Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

1

2f1acc09cc...3200d3

debian-9-armhf

6

Analysis

  • max time kernel
    149s
  • max time network
    152s
  • platform
    debian-9_armhf
  • resource
    debian9-armhf-20231215-en
  • resource tags

    arch:armhfimage:debian9-armhf-20231215-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    19/12/2023, 22:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2f1acc09ccc96cf304e0b9cd7b3200d3

  • Size

    147KB

  • MD5

    2f1acc09ccc96cf304e0b9cd7b3200d3

  • SHA1

    f25916f687e25f454daa1a5f63f7d046b0252d45

  • SHA256

    cbcef8c26964cbf85cda45c4e305bb6d979c2ff5575a81e27403bb0724c18a66

  • SHA512

    b3d6aa3888c242fe13c0daffaf875425665a838c545bd89a6f9d3e15bed28d547ad35b0902d7c1a442bb1e7c740a1e9f97bb23ec95d77644e6b67b244e11897f

  • SSDEEP

    3072:I6kSZrs+Jxe/b3a5kKmuPnoUTV77KJmNwfCHQv26:lkSZr7Jxsb3aNrPnoUTV7uJmNwfCwv26

Score
6/10

Malware Config

Signatures

  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

Processes

  • /tmp/2f1acc09ccc96cf304e0b9cd7b3200d3
    /tmp/2f1acc09ccc96cf304e0b9cd7b3200d3
    1⤵
    • Reads system routing table
    • Reads system network configuration
    PID:690

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads