Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

888f31b9d2...fc.elf

debian-9-mipsel

9

Analysis

  • max time kernel
    1428s
  • max time network
    149s
  • platform
    debian-9_mipsel
  • resource
    debian9-mipsel-20221111-en
  • resource tags

    arch:mipselimage:debian9-mipsel-20221111-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
  • submitted
    28/11/2022, 06:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    888f31b9d247f3886c8a724e1a93f4fc.elf

  • Size

    24KB

  • MD5

    888f31b9d247f3886c8a724e1a93f4fc

  • SHA1

    af708b101a50a9df77b251ae979c40d6081a5ca7

  • SHA256

    5ecd12ffb5ada3d4aa6d8ac4a2461967a5e4edafe900f9ff4dcca6eb62f864d8

  • SHA512

    cb3be66f654b21024bf392b5c65a9ed1afd9253336065adfa2958a7d8b78df8f7a03dad2a90bdb7e384589ba61e3f8e29c5636039b841e52c0e0dc6e181e458e

  • SSDEEP

    768:otrQlS07dEv0UXqUhvQE+CXQKMQKCXBpXgZqqWv8:iQlS07FUXqIYSXQKquIqs

Score
9/10

Malware Config

Signatures

  • Modifies the Watchdog daemon 1 TTPs

    Malware like Mirai modify the Watchdog to prevent it restarting an infected system.

  • Writes file to system bin folder 1 TTPs 2 IoCs
  • Reads runtime system information 6 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/888f31b9d247f3886c8a724e1a93f4fc.elf
    /tmp/888f31b9d247f3886c8a724e1a93f4fc.elf
    1⤵
      PID:323

    Network

    MITRE ATT&CK Enterprise v6

    Replay Monitor

    Loading Replay Monitor...

    Downloads