Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
3dd3901ffd49ea3ab29d267ec6d90d07
-
Size
68KB
-
Sample
231219-2zt5jabhb5
-
MD5
3dd3901ffd49ea3ab29d267ec6d90d07
-
SHA1
14e23b7577ff6d04e11f33fdab48199634d26f1d
-
SHA256
c1df83690ece451e2d5fb9ba05ca7680be2e1a7d92c0ccb41b70cfb200928cb5
-
SHA512
20922e228dec643649000a3395479c3a76c19a1d834e72eb2e4b7a1adc728450977710087ef92f670a3c7b1c396e6df480dc105357981920666669b9b4522708
-
SSDEEP
768:ORhVLGNwWqqDq16YmtY4/3YbLjTxd17URHC6jZJ+7LHuEp0dBeOukHuLwCVy/Jx9:srlWrDqcybLHCHE+vejBeZWKDvqa
Malware Config
Extracted
mirai
UNST
Targets
-
-
Target
3dd3901ffd49ea3ab29d267ec6d90d07
-
Size
68KB
-
MD5
3dd3901ffd49ea3ab29d267ec6d90d07
-
SHA1
14e23b7577ff6d04e11f33fdab48199634d26f1d
-
SHA256
c1df83690ece451e2d5fb9ba05ca7680be2e1a7d92c0ccb41b70cfb200928cb5
-
SHA512
20922e228dec643649000a3395479c3a76c19a1d834e72eb2e4b7a1adc728450977710087ef92f670a3c7b1c396e6df480dc105357981920666669b9b4522708
-
SSDEEP
768:ORhVLGNwWqqDq16YmtY4/3YbLjTxd17URHC6jZJ+7LHuEp0dBeOukHuLwCVy/Jx9:srlWrDqcybLHCHE+vejBeZWKDvqa
Score9/10-
Contacts a large (19832) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
Enumerates active TCP sockets
Gets active TCP sockets from /proc virtual filesystem.
-
Enumerates running processes
Discovers information about currently running processes on the system
-