Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    9902d9e62143c1d0a654891a9442eb8e.elf

  • Size

    58KB

  • Sample

    240325-pabknsab2t

  • MD5

    9902d9e62143c1d0a654891a9442eb8e

  • SHA1

    93f1b2728a33790d08a9d2c0e6081dee9fc7790b

  • SHA256

    53cd55d36870f40208918b630d07d6aaf8031950a7368a51f2749b52e3de3d3d

  • SHA512

    94e5f2aac374d2ecb0b8d4574d15986f7f8f57b2877ae81eda67607d7d18aad13161f1951437b55d8714d59d287fe56296f9ce446051a155df2b2bf6ddca1f85

  • SSDEEP

    1536:RU66RZWV5dH2RNX38m/1mSBaneNKu5Zpy86TRWx:n6LeWLXMSQKaneNKu9ydTRWx

Score
7/10
upx

Malware Config

Targets

    • Target

      9902d9e62143c1d0a654891a9442eb8e.elf

    • Size

      58KB

    • MD5

      9902d9e62143c1d0a654891a9442eb8e

    • SHA1

      93f1b2728a33790d08a9d2c0e6081dee9fc7790b

    • SHA256

      53cd55d36870f40208918b630d07d6aaf8031950a7368a51f2749b52e3de3d3d

    • SHA512

      94e5f2aac374d2ecb0b8d4574d15986f7f8f57b2877ae81eda67607d7d18aad13161f1951437b55d8714d59d287fe56296f9ce446051a155df2b2bf6ddca1f85

    • SSDEEP

      1536:RU66RZWV5dH2RNX38m/1mSBaneNKu5Zpy86TRWx:n6LeWLXMSQKaneNKu9ydTRWx

    Score
    7/10
    • Changes its process name

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Enumerates active TCP sockets

      Gets active TCP sockets from /proc virtual filesystem.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks