Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2c1872bfc148902337bb069a77d109f2

  • Size

    53KB

  • Sample

    231219-2r7ewsdegm

  • MD5

    2c1872bfc148902337bb069a77d109f2

  • SHA1

    e2bbae5f111920736d0ae4bf659a50440e252271

  • SHA256

    374837a8ca0c717bde4c1ee9999a401819dd0bed2176fc625668d78141cd1efb

  • SHA512

    c2a003888bb9785390892a02f71a903051f1372ee59a3852b843fd2f11d076f2e77e0e55d41d5603f86101913c5e5bfc6b1bfc3ed685e3bee6087ccf5c232d29

  • SSDEEP

    1536:QL61ZKq7Z4ZrRKKcyz0pTAyseLByPKlgOfz:X1ZPwuy4TDhSG

Malware Config

Targets

    • Target

      2c1872bfc148902337bb069a77d109f2

    • Size

      53KB

    • MD5

      2c1872bfc148902337bb069a77d109f2

    • SHA1

      e2bbae5f111920736d0ae4bf659a50440e252271

    • SHA256

      374837a8ca0c717bde4c1ee9999a401819dd0bed2176fc625668d78141cd1efb

    • SHA512

      c2a003888bb9785390892a02f71a903051f1372ee59a3852b843fd2f11d076f2e77e0e55d41d5603f86101913c5e5bfc6b1bfc3ed685e3bee6087ccf5c232d29

    • SSDEEP

      1536:QL61ZKq7Z4ZrRKKcyz0pTAyseLByPKlgOfz:X1ZPwuy4TDhSG

    Score
    10/10
    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

    • Contacts a large (20140) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Enumerates active TCP sockets

      Gets active TCP sockets from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks