Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    94.156.67.161-mips-2024-07-01T102803.elf

  • Size

    103KB

  • Sample

    240701-mrnv8azfjj

  • MD5

    64803952187ec37edbf62242e27d0823

  • SHA1

    1699ad676224037879f70d310b300879825eea48

  • SHA256

    712824c481c3cd733c85f0e2da653eaa098912abb7c2705835780f1492f51f33

  • SHA512

    813890b7c6830b0a73979438d2f648523200d4884a1e82cc13167873f4b1fba6a07454e63764faf2c38ff492681440a6483804b677caf3d9e814f7f024f59c1b

  • SSDEEP

    1536:pjDM3NJj8kZb3fkGaO5EzBYymCrifXvXbM:pwJj8w+OSBBsfXI

Score
10/10

Malware Config

Targets

    • Target

      94.156.67.161-mips-2024-07-01T102803.elf

    • Size

      103KB

    • MD5

      64803952187ec37edbf62242e27d0823

    • SHA1

      1699ad676224037879f70d310b300879825eea48

    • SHA256

      712824c481c3cd733c85f0e2da653eaa098912abb7c2705835780f1492f51f33

    • SHA512

      813890b7c6830b0a73979438d2f648523200d4884a1e82cc13167873f4b1fba6a07454e63764faf2c38ff492681440a6483804b677caf3d9e814f7f024f59c1b

    • SSDEEP

      1536:pjDM3NJj8kZb3fkGaO5EzBYymCrifXvXbM:pwJj8w+OSBBsfXI

    Score
    7/10
    • Deletes itself

    • Renames itself

    • Enumerates active TCP sockets

      Gets active TCP sockets from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks