Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

x-8.6-.snoopy

ubuntu-18.04-amd64

6

Analysis

  • max time kernel
    135s
  • max time network
    136s
  • platform
    ubuntu-18.04_amd64
  • resource
    ubuntu1804-amd64-20230831-en
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-20230831-enkernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    11/10/2023, 10:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    x-8.6-.snoopy

  • Size

    83KB

  • MD5

    cf8fb017a625a2a9d251d4edd614b578

  • SHA1

    80689548178de71bfb0cf0e4d7c4bc25c9d1fbfa

  • SHA256

    e920069acad67d6290ede66387799af91b4a61631b4609ed0650c1473c83788d

  • SHA512

    78cdbe1f0925c2b681a885e9c0d27fbaed8017653e4a07085572787a03e26e9448be13d6cc552fcc672c62ec6c6c8a94b6c2e90dbb5efb2357a7c580749971bc

  • SSDEEP

    1536:UB7crF7FePF5tZuEqdPUq0aJb9sqx3CjrM3XYuWIr8UmoIYuOVje+ZNne:URQFet5O7dPr0oSwyjr4XYuDnmrYuOVA

Score
6/10

Malware Config

Signatures

  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

Processes

  • /tmp/x-8.6-.snoopy
    /tmp/x-8.6-.snoopy
    1⤵
    • Reads system routing table
    • Reads system network configuration
    PID:596

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads