Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    7dca7bb14b80c065cc161c5ee86fd90f.bin

  • Size

    42KB

  • Sample

    240413-bt6chacf6s

  • MD5

    059c409767ee6b070ef1c5d43c942a93

  • SHA1

    86776726712723c308ba2c85f18737bc81701765

  • SHA256

    02292bb36af688ceb969fb20f80c4886bc1dc96e143a7d83ec3c2782fdbd2967

  • SHA512

    4410c105b635583167f412801294be530328eeee548b108979f1be662c4e9a2a692e8f48844d6001b584b24369985eb26b00353effcb99ef5d8869ea3b0133d5

  • SSDEEP

    768:T/gd/Nvj2PUVM26gkSi9vly27+PT7Edp7CP4H9ds228ZfEK:T/gd/NvqPUeMklP+PnaAe9ds2pZsK

Score
10/10

Malware Config

Extracted

Family

mirai

Botnet

BOTNET

Targets

    • Target

      b6a7195124063e5604b8b58d2a3fc2a64a683fd1d561d5687d34861fea610cc1.elf

    • Size

      44KB

    • MD5

      7dca7bb14b80c065cc161c5ee86fd90f

    • SHA1

      26f3fec153b0aead82a850e943c506bdf7ff0f65

    • SHA256

      b6a7195124063e5604b8b58d2a3fc2a64a683fd1d561d5687d34861fea610cc1

    • SHA512

      7297d4206459bf1b692756a0b80921cecd9f45b8d30ff5da10af800178597f12c40d4acbdb5395397a9decf14fdaa30e094353a7bcd5059b368608ef4dce50a1

    • SSDEEP

      768:6NbXq8S/S7EhVHseREql7J2VNZKnAjLuXqo3ZWqPJH2Zf:6NrqH64hVHsm7JwNZgAeXqeBH+f

    Score
    10/10
    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

    • Changes its process name

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Enumerates active TCP sockets

      Gets active TCP sockets from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks