Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

7

boatnet.arm7

debian-9-armhf

9

Analysis

  • max time kernel
    10931s
  • max time network
    133s
  • platform
    debian-9_armhf
  • resource
    debian9-armhf-20221111-en
  • resource tags

    arch:armhfimage:debian9-armhf-20221111-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    18/03/2023, 06:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    boatnet.arm7

  • Size

    45KB

  • MD5

    fb56a6197b3b9393d9b74b8cf6b2ba70

  • SHA1

    3a5ec19828e9597a0408db6235b0e952ef94d964

  • SHA256

    f6c25d2b8841c74629e7b17de54caa7658a1b991e9b8c8bb3d89f3c19816ad6f

  • SHA512

    2001b0e26e1c0044784b838af48c7553863bdb799849e3138db001062ef3f48c37a9427dcc106d05b1e35c3b4d418893be0f3af49a4f097f2ac1cec98e232dd4

  • SSDEEP

    768:g/TYCoIxdEk+AxoTZAZHFeq8b359q3UELbUXfi6nVMQHI4vcGpv9:gECFd+A6YHAxsLRQZ9

Score
9/10

Malware Config

Signatures

  • Modifies the Watchdog daemon 1 TTPs

    Malware like Mirai modify the Watchdog to prevent it restarting an infected system.

  • Writes file to system bin folder 1 TTPs 2 IoCs
  • Reads runtime system information 20 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/boatnet.arm7
    /tmp/boatnet.arm7
    1⤵
    • Reads runtime system information
    PID:364

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads