Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

1

test.zip

windows7-x64

1

test.zip

windows10-2004-x64

1

test/bin/ipcs

ubuntu-18.04-amd64

1

test/bin/iplink

ubuntu-18.04-amd64

1

test/bin/ipneigh

ubuntu-18.04-amd64

4

test/bin/iproute

ubuntu-20.04-amd64

1

test/bin/iprule

ubuntu-18.04-amd64

1

test/bin/iptunnel

ubuntu-18.04-amd64

4

test/bin/kbd_mode

ubuntu-18.04-amd64

1

test/bin/kill

ubuntu-20.04-amd64

1

test/bin/killall

ubuntu-20.04-amd64

1

test/bin/killall5

ubuntu-18.04-amd64

test/bin/klogd

ubuntu-18.04-amd64

1

test/bin/last

ubuntu-20.04-amd64

1

test/bin/less

ubuntu-18.04-amd64

1

test/bin/link

ubuntu-20.04-amd64

1

test/bin/linux32

ubuntu-18.04-amd64

1

test/bin/linux64

ubuntu-18.04-amd64

1

test/bin/linuxrc

ubuntu-18.04-amd64

3

test/bin/ln

ubuntu-18.04-amd64

1

test/bin/loadfont

ubuntu-20.04-amd64

1

test/bin/loadkmap

ubuntu-20.04-amd64

1

test/bin/logger

ubuntu-18.04-amd64

1

test/bin/login

ubuntu-20.04-amd64

1

test/bin/logname

ubuntu-18.04-amd64

1

test/bin/logread

ubuntu-18.04-amd64

1

test/bin/losetup

ubuntu-18.04-amd64

1

test/bin/lpd

ubuntu-18.04-amd64

1

test/bin/lpq

ubuntu-18.04-amd64

1

test/bin/lpr

ubuntu-18.04-amd64

1

test/bin/ls

ubuntu-18.04-amd64

1

test/bin/lsattr

ubuntu-18.04-amd64

1

Resubmissions

21/02/2024, 21:33 UTC

240221-1ebl1sff21 1

21/02/2024, 21:21 UTC

240221-z7ptnsfd7t 3

21/02/2024, 21:11 UTC

240221-z1lhnsfh42 6

21/02/2024, 20:59 UTC

240221-zs7qyafc41 6

21/02/2024, 20:49 UTC

240221-zl1n2sfb6y 3

21/02/2024, 20:37 UTC

240221-zefqasfe76 6

21/02/2024, 20:24 UTC

240221-y65m3aeh3v 6

21/02/2024, 20:10 UTC

240221-yxsl5sfc47 6

21/02/2024, 19:59 UTC

240221-yqk9gsef4y 6

21/02/2024, 19:43 UTC

240221-ye7ncaeh25 6

Analysis

  • max time kernel
    3s
  • max time network
    5s
  • platform
    ubuntu-18.04_amd64
  • resource
    ubuntu1804-amd64-20240221-en
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-20240221-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    21/02/2024, 19:59 UTC

Sharing

Copy URL
Twitter E-mail

Errors

Reason
Reading agent response: unexpected EOF
Report Analysis Logs

General

  • Target

    test/bin/killall5

  • Size

    1.1MB

  • MD5

    991461b86aebecfd096dc11ff2a04b4b

  • SHA1

    dc5074340d4631bbf89adc122e8f1a3ca8d87564

  • SHA256

    dcd9a5af1c6297ed1a66c851efa305000335d8ade068ba515125a6612f1d5300

  • SHA512

    8692fb03afbb9601444911167f579c23dfece59d04816b18591f7eb712572f63ce7b12e42dcc02f0e67110208f31f44501708f4b8d0fd8f20be6f1ea3bc0f3a5

  • SSDEEP

    24576:qpLODejvoXyo2dIfScaxJZ7+0T8eaj+I++lZq49k77i:kLODe0XgdI83ak4/9k7u

Score
6/10

Malware Config

Signatures

  • Enumerates running processes

    Discovers information about currently running processes on the system

  • Reads runtime system information 64 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/test/bin/killall5
    /tmp/test/bin/killall5
    1⤵
    • Reads runtime system information
    PID:1568

Network

  • flag-us
    DNS
    extensions.gnome.org
    Remote address:
    1.1.1.1:53
    Request
    extensions.gnome.org
    IN A
    Response
    extensions.gnome.org
    IN CNAME
    ocp-ingress.fastly.gnome.org
    ocp-ingress.fastly.gnome.org
    IN A
    151.101.129.91
    ocp-ingress.fastly.gnome.org
    IN A
    151.101.193.91
    ocp-ingress.fastly.gnome.org
    IN A
    151.101.1.91
    ocp-ingress.fastly.gnome.org
    IN A
    151.101.65.91
  • flag-us
    DNS
    extensions.gnome.org
    Remote address:
    1.1.1.1:53
    Request
    extensions.gnome.org
    IN AAAA
    Response
    extensions.gnome.org
    IN CNAME
    ocp-ingress.fastly.gnome.org
    ocp-ingress.fastly.gnome.org
    IN AAAA
    2a04:4e42:600::347
    ocp-ingress.fastly.gnome.org
    IN AAAA
    2a04:4e42:400::347
    ocp-ingress.fastly.gnome.org
    IN AAAA
    2a04:4e42:200::347
    ocp-ingress.fastly.gnome.org
    IN AAAA
    2a04:4e42::347
  • 151.101.194.49:443
    tls
    127 B
     40 B
     2
    1
  • 185.125.188.62:443
    tls
    135 B
     2
  • 185.125.188.62:443
    tls
    135 B
     2
  • 151.101.129.91:443
    tls, https
    233 B
     40 B
     1
    1
  • 151.101.65.91:443
    extensions.gnome.org
    tls
    8.3kB
     232.6kB
     135
    174
  • 89.187.167.3:443
    tls
    436 B
     6
  • 1.1.1.1:53
    extensions.gnome.org
    dns
    77 B
     174 B
     1
    1

    DNS Request

    extensions.gnome.org

    DNS Response

    151.101.129.91
    151.101.193.91
    151.101.1.91
    151.101.65.91

  • 1.1.1.1:53
    extensions.gnome.org
    dns
    77 B
     222 B
     1
    1

    DNS Request

    extensions.gnome.org

    DNS Response

    2a04:4e42:600::347
    2a04:4e42:400::347
    2a04:4e42:200::347
    2a04:4e42::347

  • 224.0.0.251:5353
    73 B
     1

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.