Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

5323bde830...4abfec

debian-9-armhf

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5323bde8305332d7273cbcf8ba8b06ef0cd19783cd0ab8ce5e331d4f7c4abfec

  • Size

    127KB

  • Sample

    220717-a6e6eaabel

  • MD5

    ba976f36325d49f1e389d4687000c46c

  • SHA1

    be80f6705c22af6f39dad7dda37e3203990a3466

  • SHA256

    5323bde8305332d7273cbcf8ba8b06ef0cd19783cd0ab8ce5e331d4f7c4abfec

  • SHA512

    8b6dba71b5bf03423863a5607908ea699af834244318831382bf4b3a36be6f139058353ede7048f5a0d00945f61e64af13352fb3f3db84b73fc2e1a3fff2c7c6

Score
10/10
mirai

Malware Config

Targets

    • Target

      5323bde8305332d7273cbcf8ba8b06ef0cd19783cd0ab8ce5e331d4f7c4abfec

    • Size

      127KB

    • MD5

      ba976f36325d49f1e389d4687000c46c

    • SHA1

      be80f6705c22af6f39dad7dda37e3203990a3466

    • SHA256

      5323bde8305332d7273cbcf8ba8b06ef0cd19783cd0ab8ce5e331d4f7c4abfec

    • SHA512

      8b6dba71b5bf03423863a5607908ea699af834244318831382bf4b3a36be6f139058353ede7048f5a0d00945f61e64af13352fb3f3db84b73fc2e1a3fff2c7c6

    Score
    9/10

    • Modifies the Watchdog daemon

      Malware like Mirai modify the Watchdog to prevent it restarting an infected system.

    • Enumerates active TCP sockets

      Gets active TCP sockets from /proc virtual filesystem.

    • Reads system network configuration

      Uses contents of /proc filesystem to enumerate network settings.

    • Reads runtime system information

      Reads data from /proc virtual filesystem.

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks