Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    610-1-0x0000000008048000-0x000000001fdd1f40-memory.dmp

  • Size

    60KB

  • Sample

    231007-egjjrabc66

  • MD5

    2fa02a4bfa62df5929d313f5fcf988fe

  • SHA1

    58c152371322b223fdf5f397583fffa6f5afb868

  • SHA256

    bde714e2cf98ceb33c640336e49e0fe05fd83d3cf2687cb534517c50764d117a

  • SHA512

    46c2669626753a53dfab7223a4a7059f03409fbc30797ab0f92c44314fb1ac9eee8eafc277205ae093ca4cd97d96c65e7c8834ea5576fcd59e4b07213cba5f9a

  • SSDEEP

    1536:komhD78mgB03Z5vcYEdGUGU6+6DG5xzy6VXnUQvISBk+a:s7EYHvcYYGRUt4Gbzy69UQvLk+a

Score
10/10

Malware Config

Extracted

Family

mirai

Botnet

UNST

Targets

    • Target

      610-1-0x0000000008048000-0x000000001fdd1f40-memory.dmp

    • Size

      60KB

    • MD5

      2fa02a4bfa62df5929d313f5fcf988fe

    • SHA1

      58c152371322b223fdf5f397583fffa6f5afb868

    • SHA256

      bde714e2cf98ceb33c640336e49e0fe05fd83d3cf2687cb534517c50764d117a

    • SHA512

      46c2669626753a53dfab7223a4a7059f03409fbc30797ab0f92c44314fb1ac9eee8eafc277205ae093ca4cd97d96c65e7c8834ea5576fcd59e4b07213cba5f9a

    • SSDEEP

      1536:komhD78mgB03Z5vcYEdGUGU6+6DG5xzy6VXnUQvISBk+a:s7EYHvcYYGRUt4Gbzy69UQvLk+a

    Score
    7/10
    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Enumerates active TCP sockets

      Gets active TCP sockets from /proc virtual filesystem.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks