Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
149s -
max time network
152s -
platform
ubuntu-20.04_amd64 -
resource
ubuntu2004-amd64-20240508-en -
resource tags
arch:amd64arch:i386image:ubuntu2004-amd64-20240508-enkernel:5.4.0-169-genericlocale:en-usos:ubuntu-20.04-amd64system -
submitted
20/05/2024, 13:40
General
-
Target
418d6c446efa61fa986754e4114d2c68.elf
-
Size
43KB
-
MD5
418d6c446efa61fa986754e4114d2c68
-
SHA1
9604a4ec113488a38c627cb348aeb7cdbc15be82
-
SHA256
6a978be892c1e84d8d7a9b012bab722446193bec1fd4b8d2f328cb35dea25c49
-
SHA512
6916623db5c8b451fcc7e7de92a29873554dea3e7efeb6ac248a3e598e47dc1e6c1a5b793f26a86c5a08bb23f217767b5b10824264d6c738f7a6767fad3422ed
-
SSDEEP
768:fMp6bYjQXwdsE1PurJp22WJMkGDyCMnn6nW4/VsZGe+0inbcuyD7U1JURzQzmiy9:0dv/ur2JLGGg/Fnouy814Rqi
Malware Config
Signatures
-
Modifies Watchdog functionality 1 TTPs 2 IoCs
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
description ioc Process File opened for modification /dev/watchdog 418d6c446efa61fa986754e4114d2c68.elf File opened for modification /dev/misc/watchdog 418d6c446efa61fa986754e4114d2c68.elf -
Reads runtime system information 1 IoCs
Reads data from /proc virtual filesystem.
description ioc Process File opened for reading /proc/self/exe 418d6c446efa61fa986754e4114d2c68.elf