Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

3466bc7438...bd461c

debian-9-armhf

7

Analysis

  • max time kernel
    144s
  • max time network
    155s
  • platform
    debian-9_armhf
  • resource
    debian9-armhf-20231215-en
  • resource tags

    arch:armhfimage:debian9-armhf-20231215-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    19/12/2023, 22:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3466bc7438faa880bd82cc8faabd461c

  • Size

    164KB

  • MD5

    3466bc7438faa880bd82cc8faabd461c

  • SHA1

    e03d5d12ec68b2bb9e535e58977a0f723de20118

  • SHA256

    ce625f6ba83d608398acbce9a5f4c5fbad78c4310613fec3165a1248c009fd9e

  • SHA512

    12376aa5d6e3acb322f17bd9c16ee944513c0d2a218a7febec64b944541ef94eb9aff9f9fe9d44eda219a7b3d6dfca0e4710555ff363ee38e40935974d4e6b10

  • SSDEEP

    3072:KTAoluiLwtzoKS8p7YrHkTIfP/1rFwzxctFmYIzgfalWk/a/bKMdW42lJOeZ9myg:KTlRmYI8faIo6pdR2lJOOmyItqTCWI

Score
7/10

Malware Config

Signatures

  • Changes its process name 1 IoCs
  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

Processes

  • /tmp/3466bc7438faa880bd82cc8faabd461c
    /tmp/3466bc7438faa880bd82cc8faabd461c
    1⤵
    • Changes its process name
    • Reads system routing table
    • Reads system network configuration
    PID:677

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads