HackTheBox – Legacy
The first portscan doesn’t reveal much other than netbios, smb and that the machine is running Windows XP.
A second pass at the scan using nmaps smb vulnerability scripts reveals that the machine is vulnerable to RCE in MS08-067, it is also vulnerable to MS17-010 but this machine predates disclosure of this vulnerability, so it is obviously not the intended route.
searchsploit reveals that there is a metasploit module for this vulnerability.
Fire up metasploit, point, hit enter, system shell.