Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

a15aabcb9a...565791

debian-9-armhf

7

Analysis

  • max time kernel
    152s
  • max time network
    156s
  • platform
    debian-9_armhf
  • resource
    debian9-armhf-20231215-en
  • resource tags

    arch:armhfimage:debian9-armhf-20231215-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    22/12/2023, 13:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a15aabcb9afb989848da47f9b0565791

  • Size

    196KB

  • MD5

    a15aabcb9afb989848da47f9b0565791

  • SHA1

    78596d860e52fef9877761a2834a7c23f8aeb5fa

  • SHA256

    ffcb62d46be34f96e0d4df2bcdb8aa3beb1bba4ae344d63c51b017e633dbdb13

  • SHA512

    f1c141e211fabc9b7c1befa26774bf60c521ecaea6462ca634847bf65c9bc23f3bdf4911ac31d940c0439feb785e3cde37cb32fa07a1c2782a5eb2885cc307e8

  • SSDEEP

    6144:tyj24pR53tA+eBKfflUxmumL3FFZCQpAxbOaajs:t0245De2tUxmumL3FFEQpAxbOaajs

Score
7/10

Malware Config

Signatures

  • Changes its process name 1 IoCs
  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

Processes

  • /tmp/a15aabcb9afb989848da47f9b0565791
    /tmp/a15aabcb9afb989848da47f9b0565791
    1⤵
    • Changes its process name
    • Reads system routing table
    • Reads system network configuration
    PID:654

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads