Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

a507c28370...fe0daa

debian-9-armhf

6

Analysis

  • max time kernel
    142s
  • max time network
    152s
  • platform
    debian-9_armhf
  • resource
    debian9-armhf-20231215-en
  • resource tags

    arch:armhfimage:debian9-armhf-20231215-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    20/12/2023, 10:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a507c283700ca74bc4ddd0fb4dfe0daa

  • Size

    95KB

  • MD5

    a507c283700ca74bc4ddd0fb4dfe0daa

  • SHA1

    20ab25198750677e7f2ae15aa799956244fff2ae

  • SHA256

    fea7c396f754d0bdeceb5b12a89d4cf37ab1a95556a63111577ce86076f9ea86

  • SHA512

    a1373d34e71b2fc2d7195c377a13b7c47fde2abc33f8e0464c7566390b5b8ffa780ff046082c10d73faffc7f6fd6786d52a9cbf62b539180b7d205c6bf35a447

  • SSDEEP

    1536:v2G7IuzVxAf2I9K25Ux5O8KXQeYNWAvOhi2t1sSPnfRhtPTHl/mqzgrQxFWOBX8u:NIuDK5UeX0lOhiMPn5h5l/magrQxFxBJ

Score
6/10

Malware Config

Signatures

  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

Processes

  • /tmp/a507c283700ca74bc4ddd0fb4dfe0daa
    /tmp/a507c283700ca74bc4ddd0fb4dfe0daa
    1⤵
    • Reads system routing table
    • Reads system network configuration
    PID:657

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads