Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8dab4c1f87b0934db639b0ce28dcdaa1

  • Size

    54KB

  • Sample

    231220-hrg1fsgfcp

  • MD5

    8dab4c1f87b0934db639b0ce28dcdaa1

  • SHA1

    50c7201dc308a2fd0e4a93ce3ebd04ad5d3ae0a7

  • SHA256

    da995b21eec86f7e8d8b8d376ad138069987fb4f7efc4d67e26a73f486f22a30

  • SHA512

    d32009a6a4277da15db449fa8e1e020ca1757e8373e5fe34424e8a4356244525009bce208dbef451e5d3e9d5a41f030cccf9f607292c40be158c0b188bb2104b

  • SSDEEP

    1536:8NvCoA4PBwI5gz8xTfN+LbqqCLlFmLRCyRoe7zA:8VCo3CQgwNQbdylQEVcs

Malware Config

Targets

    • Target

      8dab4c1f87b0934db639b0ce28dcdaa1

    • Size

      54KB

    • MD5

      8dab4c1f87b0934db639b0ce28dcdaa1

    • SHA1

      50c7201dc308a2fd0e4a93ce3ebd04ad5d3ae0a7

    • SHA256

      da995b21eec86f7e8d8b8d376ad138069987fb4f7efc4d67e26a73f486f22a30

    • SHA512

      d32009a6a4277da15db449fa8e1e020ca1757e8373e5fe34424e8a4356244525009bce208dbef451e5d3e9d5a41f030cccf9f607292c40be158c0b188bb2104b

    • SSDEEP

      1536:8NvCoA4PBwI5gz8xTfN+LbqqCLlFmLRCyRoe7zA:8VCo3CQgwNQbdylQEVcs

    Score
    10/10
    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

    • Contacts a large (167624) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Changes its process name

    • Deletes log files

      Deletes log files on the system.

    • Disables SELinux

      Disables SELinux security module.

    • Enumerates active TCP sockets

      Gets active TCP sockets from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks