Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

045a0e109d...f9.elf

debian-9-mips

6

Analysis

  • max time kernel
    149s
  • max time network
    158s
  • platform
    debian-9_mips
  • resource
    debian9-mipsbe-20230831-en
  • resource tags

    arch:mipsimage:debian9-mipsbe-20230831-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
  • submitted
    11/10/2023, 16:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    045a0e109d566f27021ab20aa6c7ceb29895a5b8512f5de0c4bdc4282971e5f9.elf

  • Size

    129KB

  • MD5

    8d4ca7ee2e6b7933c6144c2b01e9c1ac

  • SHA1

    8a0ccdabcc401dace328c823641f998c75c39bf1

  • SHA256

    045a0e109d566f27021ab20aa6c7ceb29895a5b8512f5de0c4bdc4282971e5f9

  • SHA512

    ef7b684b4b5f9b9cc61590a1bc18a05ee2c2da84e33692d18840a13af31e03bf09c677e4a2fd619797fe48edc79f940a60f160070d6127d4533dae99861e46db

  • SSDEEP

    1536:Xv62u+4zrOy+D1X/n70Z2rKiEuWx72vdhOeksI6U/TontmV/mGo+hFCHhnfuel:fZ+Nx72vdhtJUcs/mG3hFCHZfuel

Score
6/10

Malware Config

Signatures

  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

Processes

  • /tmp/045a0e109d566f27021ab20aa6c7ceb29895a5b8512f5de0c4bdc4282971e5f9.elf
    /tmp/045a0e109d566f27021ab20aa6c7ceb29895a5b8512f5de0c4bdc4282971e5f9.elf
    1⤵
    • Reads system routing table
    • Reads system network configuration
    PID:337

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads