Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

flood

ubuntu-18.04-amd64

10

Resubmissions

12/06/2023, 19:00

230612-xn5dxadh7v 10

12/06/2023, 19:00

230612-xnp9zsdh61 10

12/06/2023, 18:59

230612-xm9l8sdh6y 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    flood

  • Size

    25KB

  • Sample

    230612-xm9l8sdh6y

  • MD5

    937bc9a46705438008c4e1d3cf26bd05

  • SHA1

    511d83dba0111e85344b7382bf5d41a3dee3b0c4

  • SHA256

    64d1162a5729ff33be36f3719e70db1129a5ce7a6d01705587e7a29f1db0879b

  • SHA512

    e2b684145eeacdfe453a990b581a22fa3fc9b051f962b231ce095253b5c97d4e44af57e2f60884665dfa567f767b07b7b01b68ea27452fd19cc774548964dea1

  • SSDEEP

    768:AFTaLRRgnCEfXvn/3PHfXvn/3PHfXSV1hTk6:GTqRRgQH

Score
10/10
botnetlinuxpersistence

Malware Config

Targets

    • Target

      flood

    • Size

      25KB

    • MD5

      937bc9a46705438008c4e1d3cf26bd05

    • SHA1

      511d83dba0111e85344b7382bf5d41a3dee3b0c4

    • SHA256

      64d1162a5729ff33be36f3719e70db1129a5ce7a6d01705587e7a29f1db0879b

    • SHA512

      e2b684145eeacdfe453a990b581a22fa3fc9b051f962b231ce095253b5c97d4e44af57e2f60884665dfa567f767b07b7b01b68ea27452fd19cc774548964dea1

    • SSDEEP

      768:AFTaLRRgnCEfXvn/3PHfXvn/3PHfXSV1hTk6:GTqRRgQH

    Score
    10/10
    botnetpersistence

    • Contains strings common to LOLSquad DDoS tools

      Resembles a range of public tools written in C intended for DDoS attacks.

      botnet

    • Executes dropped EXE

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

      persistence

    • Writes file to system bin folder

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks