a32e912bff92c2c482a129304633cfa55576b801868e90c0d9846fd49b2e3d4c | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

a32e912bff...4c.elf

debian-9-armhf

7

Sharing

General

Target

a32e912bff92c2c482a129304633cfa55576b801868e90c0d9846fd49b2e3d4c.elf
Size

79KB
Sample

240326-c7p34scb23
MD5

b11856b2a18ece2f2a4cffbdecac05de
SHA1

943a8ac9122942f16365323fe7b2955c2e30dc78
SHA256

a32e912bff92c2c482a129304633cfa55576b801868e90c0d9846fd49b2e3d4c
SHA512

bdcb41df10b219caea221449a5926a3b71d8e1b525ca9af497d15c6b625697ce105a7f6d1417a45bbcee11f238dbc605979e90c763536843e5cd7918dee1365d
SSDEEP

1536:pGVhhJkUqcEJiexWbsEmIx1E03VIYByxUa4XrclkDx3IjYQZ3yQ2K1Y:poktiznx1E03VjwxV4+kDpSZbD+

Score

7^/10

upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a32e912bff92c2c482a129304633cfa55576b801868e90c0d9846fd49b2e3d4c.elf

Resource

debian9-armhf-20240226-en

debian-9-armhf

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  a32e912bff92c2c482a129304633cfa55576b801868e90c0d9846fd49b2e3d4c.elf
- Size
  
  79KB
- MD5
  
  b11856b2a18ece2f2a4cffbdecac05de
- SHA1
  
  943a8ac9122942f16365323fe7b2955c2e30dc78
- SHA256
  
  a32e912bff92c2c482a129304633cfa55576b801868e90c0d9846fd49b2e3d4c
- SHA512
  
  bdcb41df10b219caea221449a5926a3b71d8e1b525ca9af497d15c6b625697ce105a7f6d1417a45bbcee11f238dbc605979e90c763536843e5cd7918dee1365d
- SSDEEP
  
  1536:pGVhhJkUqcEJiexWbsEmIx1E03VIYByxUa4XrclkDx3IjYQZ3yQ2K1Y:poktiznx1E03VjwxV4+kDpSZbD+
Score

7^/10
- Changes its process name
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
- Enumerates active TCP sockets
  Gets active TCP sockets from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy