Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    0s
  • max time network
    58s
  • platform
    linux_mips
  • resource
    debian9-mipsbe-en-20211208
  • resource tags

    arch:mipsimage:debian9-mipsbe-en-20211208kernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
  • submitted
    27/02/2023, 11:33 UTC

General

  • Target

    [M].elf

  • Size

    415KB

  • MD5

    e3d9d55db7878ca7cc4af6189e589b8e

  • SHA1

    8ef878c33c1cba59abcac56acae32b94af5cafaf

  • SHA256

    8ec222368d75e7deb89848d4d9e44fa3119a20bdcbbb119a896f91b271b2e7a3

  • SHA512

    0ea2c96d07e8badf29f1f9a3506c099234c888f09761d4b90ab597cb9d729b267e4f226fca1053dac8a1b06dabc17ed29cc0d9ce0d5668403ff7034e00faf826

  • SSDEEP

    6144:ivao2zK0unP2Wu5eyQIl41NzyMRmls68nZqLdDILvzsr3G1:O2zNQPVs+5mls68n8LdDILvzsr3G1

Score
9/10

Malware Config

Signatures

  • Modifies the Watchdog daemon 1 TTPs

    Malware like Mirai modify the Watchdog to prevent it restarting an infected system.

  • Writes file to system bin folder 1 TTPs 4 IoCs
  • Enumerates active TCP sockets 1 TTPs 1 IoCs

    Gets active TCP sockets from /proc virtual filesystem.

  • Modifies rc script 1 TTPs 1 IoCs

    Adding/modifying system rc scripts is a common persistence mechanism.

  • Write file to user bin folder 1 TTPs 5 IoCs
  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

  • Reads runtime system information 64 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/[M].elf
    "/tmp/[M].elf"
    1⤵
    • Writes file to system bin folder
    • Modifies rc script
    • Reads runtime system information
    PID:331

Network

    No results found
  • 47.87.225.23:7890
    1.3kB
    5.5kB
    23
    23
No results found

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.