Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

0199347584...767a0d

ubuntu-18.04-amd64

0199347584...767a0d

debian-9-armhf

0199347584...767a0d

debian-9-mips

0199347584...767a0d

debian-9-mipsel

Analysis

  • max time kernel
    5s
  • max time network
    9s
  • platform
    ubuntu-18.04_amd64
  • resource
    ubuntu1804-amd64-20231215-en
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-20231215-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    29/12/2023, 19:23 UTC

Sharing

Copy URL
Twitter E-mail

Errors

Reason
Payload did not run: payload error: fork/exec /tmp/0199347584a662d3ab5ff6bf93767a0d: exec format error
Report Analysis Logs

General

  • Target

    0199347584a662d3ab5ff6bf93767a0d

  • Size

    169KB

  • MD5

    0199347584a662d3ab5ff6bf93767a0d

  • SHA1

    b9e20159aff75ea54449dceb6e781daebb5f1f0c

  • SHA256

    cf8d347a2fec01196c14647e16c58f79a7fdf70b26eecfbafdd73264ec2b1ea9

  • SHA512

    5248db56105af8e00c515ff02bcc779d5ba7e49914695f39590f3f72dcaadc6ac5a5be7594efaeaa95177dd2b0fa083b03593d237f75cefd85300d28636c5c70

  • SSDEEP

    3072:ApMmRKA5x9QbuejKbVz0AtSzDn1ur7qYq7kTQxeACAOp1rI:A+mRKA5x9QbXjK54NP1ur7qYq7kTQxeU

Score
1/10

Malware Config

Signatures

Processes

  • /tmp/0199347584a662d3ab5ff6bf93767a0d
    /tmp/0199347584a662d3ab5ff6bf93767a0d
    1⤵
      PID:1545

    Network

    • flag-us
      DNS
      cdn.fwupd.org
      Remote address:
      1.1.1.1:53
      Request
      cdn.fwupd.org
      IN A
      Response
      cdn.fwupd.org
      IN CNAME
      dualstack.p2.shared.global.fastly.net
      dualstack.p2.shared.global.fastly.net
      IN A
      151.101.2.49
      dualstack.p2.shared.global.fastly.net
      IN A
      151.101.66.49
      dualstack.p2.shared.global.fastly.net
      IN A
      151.101.130.49
      dualstack.p2.shared.global.fastly.net
      IN A
      151.101.194.49
    • flag-us
      DNS
      cdn.fwupd.org
      Remote address:
      1.1.1.1:53
      Request
      cdn.fwupd.org
      IN AAAA
      Response
      cdn.fwupd.org
      IN CNAME
      dualstack.p2.shared.global.fastly.net
      dualstack.p2.shared.global.fastly.net
      IN AAAA
      2a04:4e42::561
      dualstack.p2.shared.global.fastly.net
      IN AAAA
      2a04:4e42:200::561
      dualstack.p2.shared.global.fastly.net
      IN AAAA
      2a04:4e42:400::561
      dualstack.p2.shared.global.fastly.net
      IN AAAA
      2a04:4e42:600::561
    • 151.101.194.49:443
      tls
      404 B
       6
    • 151.101.65.91:443
      tls
      127 B
       40 B
       2
      1
    • 151.101.194.49:443
      cdn.fwupd.org
      tls
      7.8kB
       233.4kB
       112
      176
    • 195.181.164.14:443
      tls
      353 B
       5
    • 224.0.0.251:5353
      73 B
       1
    • 1.1.1.1:53
      cdn.fwupd.org
      dns
      70 B
       185 B
       1
      1

      DNS Request

      cdn.fwupd.org

      DNS Response

      151.101.2.49
      151.101.66.49
      151.101.130.49
      151.101.194.49

    • 1.1.1.1:53
      cdn.fwupd.org
      dns
      70 B
       233 B
       1
      1

      DNS Request

      cdn.fwupd.org

      DNS Response

      2a04:4e42::561
      2a04:4e42:200::561
      2a04:4e42:400::561
      2a04:4e42:600::561

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.