Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

1

discordrpc...pimage

ubuntu-18.04-amd64

5

Analysis

  • max time kernel
    5s
  • max time network
    187s
  • platform
    linux_amd64
  • resource
    ubuntu1804-amd64-en-20211208
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-en-20211208kernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    19/04/2023, 04:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    discordrpcmaker-linux.appimage

  • Size

    80.3MB

  • MD5

    e38762d52c59e2864fe676bfcf81d1a5

  • SHA1

    c29799292384d32af5a0aa7a2384eaf41d780ccd

  • SHA256

    594f3b7f9f6fedd00f5ca64c74441505d9000b35e1ecc37595b8af6fb44c3728

  • SHA512

    51e5befbf556db63eb53f209c3d46a406dab87a9cee79369f2bb0453885cb3559d999e9a6c9aa755b6d450065da1c9e811663d01505c3815f553d3f43496b53c

  • SSDEEP

    1572864:ONzu+EnDkLMK6neyA/E8/Rrqp5q3xnDainBF1ot2BTOt0W4OJojg+LHJItTn+7V/:4S+C0Eiu5q1DaAot2RW43g+lI5n6V/

Score
5/10

Malware Config

Signatures

  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

  • Writes file to tmp directory 4 IoCs

    Malware often drops required files in the /tmp directory.

Processes

  • /tmp/discordrpcmaker-linux.appimage
    /tmp/discordrpcmaker-linux.appimage
    1⤵
    • Reads runtime system information
    • Writes file to tmp directory
    PID:574
  • /tmp/.mount_discorSo2tD4/AppRun
    /tmp/discordrpcmaker-linux.appimage
    1⤵
    • Writes file to tmp directory
    PID:574

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads