Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

959c53f469...5718bf

debian-9-mipsel

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    959c53f4690cb2e567579ec6885718bf

  • Size

    149KB

  • Sample

    231220-kd5kpsfce3

  • MD5

    959c53f4690cb2e567579ec6885718bf

  • SHA1

    8c63cfb0785e78820cead70f776809471a064234

  • SHA256

    bfa5bdd1520938d1d2b798564a311347d3ad58276ccc63fc09321cb9f3b5574d

  • SHA512

    7e6ec60cb17cf0eb12f7ed04cb9d8b26cf5abadf2e2a2bcc20fd489672a133c66ae7b3edf02b9d319bdd291261cb9c43b7dcfee5ecbd436374f1d5b320311589

  • SSDEEP

    1536:jlb6AAR5reTBbUCVl9I4MBZsnlf4APKHQJjeaVtm5hOZrdf3rMsBRTFAHj4jM:Ri14CvAGcjM5hOVt3rMsBRTFCj4jM

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

199.19.226.178:282

Targets

    • Target

      959c53f4690cb2e567579ec6885718bf

    • Size

      149KB

    • MD5

      959c53f4690cb2e567579ec6885718bf

    • SHA1

      8c63cfb0785e78820cead70f776809471a064234

    • SHA256

      bfa5bdd1520938d1d2b798564a311347d3ad58276ccc63fc09321cb9f3b5574d

    • SHA512

      7e6ec60cb17cf0eb12f7ed04cb9d8b26cf5abadf2e2a2bcc20fd489672a133c66ae7b3edf02b9d319bdd291261cb9c43b7dcfee5ecbd436374f1d5b320311589

    • SSDEEP

      1536:jlb6AAR5reTBbUCVl9I4MBZsnlf4APKHQJjeaVtm5hOZrdf3rMsBRTFAHj4jM:Ri14CvAGcjM5hOVt3rMsBRTFCj4jM

    Score
    7/10

    • Changes its process name

    • Deletes itself

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks