Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4d21edf2f074bb83a118e4321c912922.elf

  • Size

    127KB

  • Sample

    240219-ltcqascd39

  • MD5

    4d21edf2f074bb83a118e4321c912922

  • SHA1

    7816908c6cf7c4c105338a097a84578602396f7b

  • SHA256

    19936aea14ea5d32bf54625c3a2e6d735e24b866ff33f76d3d654620ecb2f0fa

  • SHA512

    1da50741de1b474fa6e77cfc488976f9558650a4ff0be7a089dfb86138daabfa89f97b786b842418049b8a26ed95fbf7b52c04543c736939656d898d7590335a

  • SSDEEP

    3072:+DShVLkDZ6waCAdclEbYJOmP46aQyfPluesNb:VhVeZ6zclEboOmP46aQyfPluesNb

Score
10/10

Malware Config

Targets

    • Target

      4d21edf2f074bb83a118e4321c912922.elf

    • Size

      127KB

    • MD5

      4d21edf2f074bb83a118e4321c912922

    • SHA1

      7816908c6cf7c4c105338a097a84578602396f7b

    • SHA256

      19936aea14ea5d32bf54625c3a2e6d735e24b866ff33f76d3d654620ecb2f0fa

    • SHA512

      1da50741de1b474fa6e77cfc488976f9558650a4ff0be7a089dfb86138daabfa89f97b786b842418049b8a26ed95fbf7b52c04543c736939656d898d7590335a

    • SSDEEP

      3072:+DShVLkDZ6waCAdclEbYJOmP46aQyfPluesNb:VhVeZ6zclEboOmP46aQyfPluesNb

    Score
    7/10
    • Changes its process name

    • Executes dropped EXE

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks