Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

045a0e109d...f9.elf

debian-9-mips

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8d4ca7ee2e6b7933c6144c2b01e9c1ac.bin

  • Size

    44KB

  • Sample

    231011-tfs45ahd8z

  • MD5

    3b18b03fc29b64ee22acfef674921af4

  • SHA1

    644fdf7f9172fcb2ffa9089df93e23f6645d9c5d

  • SHA256

    706148410c1411f7a24f5914afb7339eb28aea59f8e6ef4d243bffc8d75a5f94

  • SHA512

    3e7a4d38337287a806e09b8f8a950feed71ec13c5da0664a3db008764e499323f160ad04afa248c41f35ca0e9bd7ab702cbc5d44403d6689b859de3c3ae6815e

  • SSDEEP

    768:v69WsdQr8EAMvW6XKt+9s+6w5I6tebG/7c8X9Y2gD2A62Y3/yQU5rs28Tj5F+gxN:YQrrAf66tcKw55/7D9I2A62YqJSj5EsN

Score
10/10
gafgytbotnet

Malware Config

Extracted

Family

gafgyt

C2

45.61.184.126:2782

Targets

    • Target

      045a0e109d566f27021ab20aa6c7ceb29895a5b8512f5de0c4bdc4282971e5f9.elf

    • Size

      129KB

    • MD5

      8d4ca7ee2e6b7933c6144c2b01e9c1ac

    • SHA1

      8a0ccdabcc401dace328c823641f998c75c39bf1

    • SHA256

      045a0e109d566f27021ab20aa6c7ceb29895a5b8512f5de0c4bdc4282971e5f9

    • SHA512

      ef7b684b4b5f9b9cc61590a1bc18a05ee2c2da84e33692d18840a13af31e03bf09c677e4a2fd619797fe48edc79f940a60f160070d6127d4533dae99861e46db

    • SSDEEP

      1536:Xv62u+4zrOy+D1X/n70Z2rKiEuWx72vdhOeksI6U/TontmV/mGo+hFCHhnfuel:fZ+Nx72vdhtJUcs/mG3hFCHZfuel

    Score
    6/10

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks