Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2c1872bfc148902337bb069a77d109f2
-
Size
53KB
-
Sample
231219-2r7ewsdegm
-
MD5
2c1872bfc148902337bb069a77d109f2
-
SHA1
e2bbae5f111920736d0ae4bf659a50440e252271
-
SHA256
374837a8ca0c717bde4c1ee9999a401819dd0bed2176fc625668d78141cd1efb
-
SHA512
c2a003888bb9785390892a02f71a903051f1372ee59a3852b843fd2f11d076f2e77e0e55d41d5603f86101913c5e5bfc6b1bfc3ed685e3bee6087ccf5c232d29
-
SSDEEP
1536:QL61ZKq7Z4ZrRKKcyz0pTAyseLByPKlgOfz:X1ZPwuy4TDhSG
Malware Config
Targets
-
-
Target
2c1872bfc148902337bb069a77d109f2
-
Size
53KB
-
MD5
2c1872bfc148902337bb069a77d109f2
-
SHA1
e2bbae5f111920736d0ae4bf659a50440e252271
-
SHA256
374837a8ca0c717bde4c1ee9999a401819dd0bed2176fc625668d78141cd1efb
-
SHA512
c2a003888bb9785390892a02f71a903051f1372ee59a3852b843fd2f11d076f2e77e0e55d41d5603f86101913c5e5bfc6b1bfc3ed685e3bee6087ccf5c232d29
-
SSDEEP
1536:QL61ZKq7Z4ZrRKKcyz0pTAyseLByPKlgOfz:X1ZPwuy4TDhSG
-
Contacts a large (20140) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
Enumerates active TCP sockets
Gets active TCP sockets from /proc virtual filesystem.
-