Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Overview
overview
6Static
static
1test.zip
windows7-x64
1test.zip
windows10-2004-x64
1test/bin/popmaildir
ubuntu-20.04-amd64
1test/bin/poweroff
ubuntu-20.04-amd64
6test/bin/powertop
ubuntu-18.04-amd64
3test/bin/printenv
ubuntu-20.04-amd64
1test/bin/printf
ubuntu-20.04-amd64
1test/bin/ps
ubuntu-20.04-amd64
6test/bin/pscan
ubuntu-18.04-amd64
1test/bin/pstree
ubuntu-20.04-amd64
6test/bin/pwd
ubuntu-20.04-amd64
1test/bin/pwdx
ubuntu-20.04-amd64
1test/bin/raidautorun
ubuntu-20.04-amd64
1test/bin/rdate
ubuntu-20.04-amd64
1test/bin/rdev
ubuntu-20.04-amd64
1test/bin/readahead
ubuntu-20.04-amd64
1test/bin/readlink
ubuntu-18.04-amd64
1test/bin/readprofile
ubuntu-20.04-amd64
3test/bin/realpath
ubuntu-20.04-amd64
1test/bin/reboot
ubuntu-20.04-amd64
6test/bin/reformime
ubuntu-18.04-amd64
1test/bin/remove-shell
ubuntu-20.04-amd64
1test/bin/renice
ubuntu-20.04-amd64
1test/bin/reset
ubuntu-18.04-amd64
1test/bin/resize
ubuntu-20.04-amd64
1test/bin/resume
ubuntu-20.04-amd64
1test/bin/rev
ubuntu-20.04-amd64
1test/bin/rm
ubuntu-20.04-amd64
1test/bin/rmdir
ubuntu-20.04-amd64
1test/bin/rmmod
ubuntu-20.04-amd64
1test/bin/route
ubuntu-20.04-amd64
6test/bin/rpm
ubuntu-20.04-amd64
1Resubmissions
21/02/2024, 21:33
240221-1ebl1sff21 121/02/2024, 21:21
240221-z7ptnsfd7t 321/02/2024, 21:11
240221-z1lhnsfh42 621/02/2024, 20:59
240221-zs7qyafc41 621/02/2024, 20:49
240221-zl1n2sfb6y 321/02/2024, 20:37
240221-zefqasfe76 621/02/2024, 20:24
240221-y65m3aeh3v 621/02/2024, 20:10
240221-yxsl5sfc47 621/02/2024, 19:59
240221-yqk9gsef4y 621/02/2024, 19:43
240221-ye7ncaeh25 6Analysis
-
max time kernel
4s -
max time network
132s -
platform
ubuntu-20.04_amd64 -
resource
ubuntu2004-amd64-20240221-en -
resource tags
arch:amd64arch:i386image:ubuntu2004-amd64-20240221-enkernel:5.4.0-169-genericlocale:en-usos:ubuntu-20.04-amd64system -
submitted
21/02/2024, 20:37
Static task
static1
Behavioral task
behavioral1
Sample
test.zip
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral2
Sample
test.zip
Resource
win10v2004-20240221-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
test/bin/popmaildir
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral4
Sample
test/bin/poweroff
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral5
Sample
test/bin/powertop
Resource
ubuntu1804-amd64-20240221-en
ubuntu-18.04-amd64
Behavioral task
behavioral6
Sample
test/bin/printenv
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral7
Sample
test/bin/printf
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral8
Sample
test/bin/ps
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral9
Sample
test/bin/pscan
Resource
ubuntu1804-amd64-20240221-en
ubuntu-18.04-amd64
Behavioral task
behavioral10
Sample
test/bin/pstree
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral11
Sample
test/bin/pwd
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral12
Sample
test/bin/pwdx
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral13
Sample
test/bin/raidautorun
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral14
Sample
test/bin/rdate
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral15
Sample
test/bin/rdev
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral16
Sample
test/bin/readahead
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral17
Sample
test/bin/readlink
Resource
ubuntu1804-amd64-20240221-en
ubuntu-18.04-amd64
Behavioral task
behavioral18
Sample
test/bin/readprofile
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral19
Sample
test/bin/realpath
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral20
Sample
test/bin/reboot
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral21
Sample
test/bin/reformime
Resource
ubuntu1804-amd64-20240221-en
ubuntu-18.04-amd64
Behavioral task
behavioral22
Sample
test/bin/remove-shell
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral23
Sample
test/bin/renice
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral24
Sample
test/bin/reset
Resource
ubuntu1804-amd64-20240221-en
ubuntu-18.04-amd64
Behavioral task
behavioral25
Sample
test/bin/resize
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral26
Sample
test/bin/resume
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral27
Sample
test/bin/rev
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral28
Sample
test/bin/rm
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral29
Sample
test/bin/rmdir
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral30
Sample
test/bin/rmmod
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral31
Sample
test/bin/route
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
Behavioral task
behavioral32
Sample
test/bin/rpm
Resource
ubuntu2004-amd64-20240221-en
ubuntu-20.04-amd64
General
-
Target
test/bin/pstree
-
Size
1.1MB
-
MD5
991461b86aebecfd096dc11ff2a04b4b
-
SHA1
dc5074340d4631bbf89adc122e8f1a3ca8d87564
-
SHA256
dcd9a5af1c6297ed1a66c851efa305000335d8ade068ba515125a6612f1d5300
-
SHA512
8692fb03afbb9601444911167f579c23dfece59d04816b18591f7eb712572f63ce7b12e42dcc02f0e67110208f31f44501708f4b8d0fd8f20be6f1ea3bc0f3a5
-
SSDEEP
24576:qpLODejvoXyo2dIfScaxJZ7+0T8eaj+I++lZq49k77i:kLODe0XgdI83ak4/9k7u
Malware Config
Signatures
-
Enumerates running processes
Discovers information about currently running processes on the system
-
Reads runtime system information 64 IoCs
Reads data from /proc virtual filesystem.
description ioc Process File opened for reading /proc/21/task/21/stat pstree File opened for reading /proc/997/task/997/stat pstree File opened for reading /proc/1022/task/1022/stat pstree File opened for reading /proc/394/task/394/stat pstree File opened for reading /proc/959/task/961/stat pstree File opened for reading /proc/1080/task/1136/stat pstree File opened for reading /proc/1096/task/1098/stat pstree File opened for reading /proc/1300/task/1301/stat pstree File opened for reading /proc/1078/task/1133/stat pstree File opened for reading /proc/159/task pstree File opened for reading /proc/162/task pstree File opened for reading /proc/484/task/488/stat pstree File opened for reading /proc/586/task/586/stat pstree File opened for reading /proc/1022/task/1024/stat pstree File opened for reading /proc/9/task/9/stat pstree File opened for reading /proc/93/task/93/stat pstree File opened for reading /proc/1131/task/1131/stat pstree File opened for reading /proc/1074/task/1086/stat pstree File opened for reading /proc/1/task/1/stat pstree File opened for reading /proc/87/task pstree File opened for reading /proc/162/task/162/stat pstree File opened for reading /proc/566/task/566/stat pstree File opened for reading /proc/901/task/904/stat pstree File opened for reading /proc/12/task pstree File opened for reading /proc/176/task pstree File opened for reading /proc/484/task pstree File opened for reading /proc/667/task pstree File opened for reading /proc/928/task pstree File opened for reading /proc/24/task pstree File opened for reading /proc/172/task pstree File opened for reading /proc/953/task/957/stat pstree File opened for reading /proc/1131/task pstree File opened for reading /proc/74/task pstree File opened for reading /proc/170/task/170/stat pstree File opened for reading /proc/1287/task/1290/stat pstree File opened for reading /proc/172/task/172/stat pstree File opened for reading /proc/441/task/452/stat pstree File opened for reading /proc/959/task pstree File opened for reading /proc/997/task pstree File opened for reading /proc/1167/task/1200/stat pstree File opened for reading /proc/163/task pstree File opened for reading /proc/168/task/168/stat pstree File opened for reading /proc/610/task/610/stat pstree File opened for reading /proc/175/task/175/stat pstree File opened for reading /proc/440/task pstree File opened for reading /proc/641/task/641/stat pstree File opened for reading /proc/667/task/669/stat pstree File opened for reading /proc/953/task/954/stat pstree File opened for reading /proc/89/task pstree File opened for reading /proc/170/task pstree File opened for reading /proc/969/task/987/stat pstree File opened for reading /proc/1141/task/1293/stat pstree File opened for reading /proc/1287/task/1289/stat pstree File opened for reading /proc/396/task pstree File opened for reading /proc/966/task/966/stat pstree File opened for reading /proc/11/task/11/stat pstree File opened for reading /proc/808/task pstree File opened for reading /proc/948/task/949/stat pstree File opened for reading /proc/13/task pstree File opened for reading /proc/164/task pstree File opened for reading /proc/439/task/443/stat pstree File opened for reading /proc/501/task/501/stat pstree File opened for reading /proc/793/task/793/stat pstree File opened for reading /proc/75/task pstree