Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    223d8461f47473f5db08fd4afaadc572.elf

  • Size

    41KB

  • Sample

    240701-w2mkkssekd

  • MD5

    223d8461f47473f5db08fd4afaadc572

  • SHA1

    02c74fa47f57f5dd7ee200fbc09e0483feaa3006

  • SHA256

    06d3de1f4ed49d4154d6be53c1a97fa1a7bb17de8abfba1a3feb1da8d5aec6d4

  • SHA512

    f55cc66b781fa1134c53f1f584af8adab046f47804325a635fe9a623cac1e869ff95930de5e988041353ac1ed4a1e63a4bae7e481326435fe6772d0108fa449a

  • SSDEEP

    768:N8pWwBZD5qrNVKZZjPGCo9IwxTcSPut5L9f6/NPc5bt7eLR:SWuSVKL+7hxTcaut5R6V

Score
10/10

Malware Config

Extracted

Family

mirai

Botnet

BOTNET

C2

fortnite.cryptoinvest.black

Targets

    • Target

      223d8461f47473f5db08fd4afaadc572.elf

    • Size

      41KB

    • MD5

      223d8461f47473f5db08fd4afaadc572

    • SHA1

      02c74fa47f57f5dd7ee200fbc09e0483feaa3006

    • SHA256

      06d3de1f4ed49d4154d6be53c1a97fa1a7bb17de8abfba1a3feb1da8d5aec6d4

    • SHA512

      f55cc66b781fa1134c53f1f584af8adab046f47804325a635fe9a623cac1e869ff95930de5e988041353ac1ed4a1e63a4bae7e481326435fe6772d0108fa449a

    • SSDEEP

      768:N8pWwBZD5qrNVKZZjPGCo9IwxTcSPut5L9f6/NPc5bt7eLR:SWuSVKL+7hxTcaut5R6V

    Score
    9/10
    • Contacts a large (76259) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks