Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3dd3901ffd49ea3ab29d267ec6d90d07

  • Size

    68KB

  • Sample

    231219-2zt5jabhb5

  • MD5

    3dd3901ffd49ea3ab29d267ec6d90d07

  • SHA1

    14e23b7577ff6d04e11f33fdab48199634d26f1d

  • SHA256

    c1df83690ece451e2d5fb9ba05ca7680be2e1a7d92c0ccb41b70cfb200928cb5

  • SHA512

    20922e228dec643649000a3395479c3a76c19a1d834e72eb2e4b7a1adc728450977710087ef92f670a3c7b1c396e6df480dc105357981920666669b9b4522708

  • SSDEEP

    768:ORhVLGNwWqqDq16YmtY4/3YbLjTxd17URHC6jZJ+7LHuEp0dBeOukHuLwCVy/Jx9:srlWrDqcybLHCHE+vejBeZWKDvqa

Score
10/10

Malware Config

Extracted

Family

mirai

Botnet

UNST

Targets

    • Target

      3dd3901ffd49ea3ab29d267ec6d90d07

    • Size

      68KB

    • MD5

      3dd3901ffd49ea3ab29d267ec6d90d07

    • SHA1

      14e23b7577ff6d04e11f33fdab48199634d26f1d

    • SHA256

      c1df83690ece451e2d5fb9ba05ca7680be2e1a7d92c0ccb41b70cfb200928cb5

    • SHA512

      20922e228dec643649000a3395479c3a76c19a1d834e72eb2e4b7a1adc728450977710087ef92f670a3c7b1c396e6df480dc105357981920666669b9b4522708

    • SSDEEP

      768:ORhVLGNwWqqDq16YmtY4/3YbLjTxd17URHC6jZJ+7LHuEp0dBeOukHuLwCVy/Jx9:srlWrDqcybLHCHE+vejBeZWKDvqa

    Score
    9/10
    • Contacts a large (19832) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Enumerates active TCP sockets

      Gets active TCP sockets from /proc virtual filesystem.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks