Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
6s -
max time network
8s -
platform
ubuntu-18.04_amd64 -
resource
ubuntu1804-amd64-20231215-en -
resource tags
-
submitted
22/12/2023, 07:20 UTC
Errors
Reason
platform exec: stat /lib/ld-linux.so.2: no such file or directory
payload error: fork/exec /tmp/.kdi/pico: no such file or directory
General
-
Target
.kdi/pico
-
Size
164KB
-
MD5
51c7f3ec60f1613aa5202f26d9248ed1
-
SHA1
835ab0aba3740fcf80fe7238ef4d089d8c5a72c1
-
SHA256
5e092470ec616d5b866aab0f1a69309b74a48567eec7a250c9a328901a21a498
-
SHA512
424071e10216836567266cda5ab18876943817e731272ca68f1b96d00e80cef90c286aa5c46fdd5d963014282f39964f46905bda2e18309d6692383e24b5b8b6
-
SSDEEP
3072:6vq0piaD1aJ3INN6QhldW6dV/T76+eRWPdrJlkODLm729xJtyv0t:6vtjDsYNJdW6dV/T76aPdrJlkOHm729b
Score
1/10
Malware Config
Signatures
Processes
-
/tmp/.kdi/pico/tmp/.kdi/pico1⤵
Network
-
DNScdn.fwupd.orgRemote address:1.1.1.1:53Requestcdn.fwupd.orgIN AResponsecdn.fwupd.orgIN CNAMEdualstack.p2.shared.global.fastly.netdualstack.p2.shared.global.fastly.netIN A151.101.2.49dualstack.p2.shared.global.fastly.netIN A151.101.194.49dualstack.p2.shared.global.fastly.netIN A151.101.66.49dualstack.p2.shared.global.fastly.netIN A151.101.130.49 -
DNScdn.fwupd.orgRemote address:1.1.1.1:53Requestcdn.fwupd.orgIN AAAAResponsecdn.fwupd.orgIN CNAMEdualstack.p2.shared.global.fastly.netdualstack.p2.shared.global.fastly.netIN AAAA2a04:4e42::561dualstack.p2.shared.global.fastly.netIN AAAA2a04:4e42:200::561dualstack.p2.shared.global.fastly.netIN AAAA2a04:4e42:400::561dualstack.p2.shared.global.fastly.netIN AAAA2a04:4e42:600::561
-
151.101.194.49:443tls
-
151.101.65.91:443tls
-
151.101.130.49:443cdn.fwupd.orgtls
-
89.187.167.2:443tls
-
224.0.0.251:5353 -
1.1.1.1:53cdn.fwupd.orgdns
DNS Request
cdn.fwupd.org
DNS Response
151.101.2.49151.101.194.49151.101.66.49151.101.130.49
-
1.1.1.1:53cdn.fwupd.orgdns
DNS Request
cdn.fwupd.org
DNS Response
2a04:4e42::5612a04:4e42:200::5612a04:4e42:400::5612a04:4e42:600::561