132d112547b924e0501379bf5ba2d08751ec9bd406ab2feafa4f55077f0d6a79 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

778771ce3f...3b.elf

debian-9-armhf

7

Sharing

General

Target

7afe8d0b711c5ce2bd18aa61bbaa9351.bin
Size

45KB
Sample

231211-cns1nabfe8
MD5

b5234e06ecf7c2f5998f6ff9446d216e
SHA1

5e72531568cffd187cf911f624b5fdd2b3d6f859
SHA256

132d112547b924e0501379bf5ba2d08751ec9bd406ab2feafa4f55077f0d6a79
SHA512

e28d78551aae2d5cde0f9b17cdace528f9f641ac778e06aae94abe5c9d85e3874e07a09847b2dbe76f04235ad3ea38b244a5204eda70e6aa8896e9febe67f7b4
SSDEEP

768:ZVbtnp1xO04aVIV/mIzbE3UM3nRISPKK7bX9ozR50/ugCWHjKNEslyJxs:ZVbi04LOuEkaWSiK7azRvKjKHEE

Score

7^/10

evasion upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

778771ce3fa307b581377e54b181719e28294e4d57e04b2e222e342bcf4ca73b.elf

Resource

debian9-armhf-20231201-en

debian-9-armhf

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  778771ce3fa307b581377e54b181719e28294e4d57e04b2e222e342bcf4ca73b.elf
- Size
  
  46KB
- MD5
  
  7afe8d0b711c5ce2bd18aa61bbaa9351
- SHA1
  
  12ac57e84bed5855bf6267596084977b4b9ca19f
- SHA256
  
  778771ce3fa307b581377e54b181719e28294e4d57e04b2e222e342bcf4ca73b
- SHA512
  
  71933c6fa03f62aab71d0a18fe9b0f2dea752cdf764abfdd1707ccd41582f61c6cfe8beffe6335203ecd9063b56c796f47cb8c167d22a24067338341d1d24fc6
- SSDEEP
  
  768:ndG6b+M+u/QIchiRa4DlvhrfJjStAzKdPT4XAcR4eb6uMFNHqqIQdfLZGl/7XR9:ndRbl/hTnrUtAmRcRbmuM+qr4TR9
Score

7^/10

evasion
- Deletes Audit logs
  Deletes logs related to the Linux Audit framework.
  evasion
- Deletes system logs
  Deletes log file which contains global system messages. Adversaries may delete system logs to minimize their footprint.
  evasion
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Writes DNS configuration
  Writes data to DNS resolver config file.
- Deletes log files
  Deletes log files on the system.
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Indicator Removal

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Dynamic Resolution

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.