Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
8dab4c1f87b0934db639b0ce28dcdaa1
-
Size
54KB
-
Sample
231220-hrg1fsgfcp
-
MD5
8dab4c1f87b0934db639b0ce28dcdaa1
-
SHA1
50c7201dc308a2fd0e4a93ce3ebd04ad5d3ae0a7
-
SHA256
da995b21eec86f7e8d8b8d376ad138069987fb4f7efc4d67e26a73f486f22a30
-
SHA512
d32009a6a4277da15db449fa8e1e020ca1757e8373e5fe34424e8a4356244525009bce208dbef451e5d3e9d5a41f030cccf9f607292c40be158c0b188bb2104b
-
SSDEEP
1536:8NvCoA4PBwI5gz8xTfN+LbqqCLlFmLRCyRoe7zA:8VCo3CQgwNQbdylQEVcs
Malware Config
Targets
-
-
Target
8dab4c1f87b0934db639b0ce28dcdaa1
-
Size
54KB
-
MD5
8dab4c1f87b0934db639b0ce28dcdaa1
-
SHA1
50c7201dc308a2fd0e4a93ce3ebd04ad5d3ae0a7
-
SHA256
da995b21eec86f7e8d8b8d376ad138069987fb4f7efc4d67e26a73f486f22a30
-
SHA512
d32009a6a4277da15db449fa8e1e020ca1757e8373e5fe34424e8a4356244525009bce208dbef451e5d3e9d5a41f030cccf9f607292c40be158c0b188bb2104b
-
SSDEEP
1536:8NvCoA4PBwI5gz8xTfN+LbqqCLlFmLRCyRoe7zA:8VCo3CQgwNQbdylQEVcs
-
Contacts a large (167624) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Changes its process name
-
Deletes log files
Deletes log files on the system.
-
Disables SELinux
Disables SELinux security module.
-
Enumerates active TCP sockets
Gets active TCP sockets from /proc virtual filesystem.
-