Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
36s -
max time network
133s -
platform
ubuntu-22.04_amd64 -
resource
ubuntu2204-amd64-20240611-en -
resource tags
-
submitted
11/07/2024, 08:06
General
-
Target
ICMP
-
Size
26KB
-
MD5
d25194077c66aa30beebe70f2ac5c6bd
-
SHA1
51305e4815e5594196137232ef13613c1e82c8b9
-
SHA256
c716cf2edc465e86105e644b6c61b6c26b96b529e4afbd29d4f42c9ea21eab7e
-
SHA512
8fb5c0d7d1e970b7ffaac4162a704ddf1129efa1c7981daa79f80d8b38550b774e3d0b584dbf604d1d5f860ec93255c57f7706e01bee89cabc63af2fa1417e6c
-
SSDEEP
384:BWskamFsqGhR9jyi1jwn+SQDnTmkEWaRe7+IC9fu:AFTaLRRlhw+SQ7TmkE5M7+tf
Score
7/10
Malware Config
Signatures
-
Executes dropped EXE 44 IoCs
-
Creates/modifies Cron job 1 TTPs 44 IoCs
Cron allows running tasks on a schedule, and is commonly used for malware persistence.
-
Writes file to system bin folder 1 TTPs 1 IoCs
-
Reads runtime system information 44 IoCs
Reads data from /proc virtual filesystem.
-
Writes file to tmp directory 44 IoCs
Malware often drops required files in the /tmp directory.
Processes
-
/tmp/ICMP/tmp/ICMP1⤵
- Creates/modifies Cron job
- Writes file to system bin folder
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileu3SuDW/tmp/ICMP2⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filenNKmWY/tmp/ICMP3⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/file7l1lco/tmp/ICMP4⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileUTvzFH/tmp/ICMP5⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileNzGW4E/tmp/ICMP6⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filegk0lGz/tmp/ICMP7⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileaYhF4d/tmp/ICMP8⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileVEi0ac/tmp/ICMP9⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileNd6qwb/tmp/ICMP10⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filebbkyki/tmp/ICMP11⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileVDsMJG/tmp/ICMP12⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filev9DExB/tmp/ICMP13⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileWBdcQz/tmp/ICMP14⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileLbS1z0/tmp/ICMP15⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/file5JM2pV/tmp/ICMP16⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filee8gGz0/tmp/ICMP17⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/file3BDDtu/tmp/ICMP18⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/file7SkusE/tmp/ICMP19⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileHnr5Cn/tmp/ICMP20⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileZFfzPR/tmp/ICMP21⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filelsQLQR/tmp/ICMP22⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileetSdjF/tmp/ICMP23⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filenv4CPi/tmp/ICMP24⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileOSEZgy/tmp/ICMP25⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileHeWeXJ/tmp/ICMP26⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileN5Ek8R/tmp/ICMP27⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileiAByiC/tmp/ICMP28⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileolu50k/tmp/ICMP29⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filesKFg8O/tmp/ICMP30⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileOFP0Gb/tmp/ICMP31⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filev3kvVr/tmp/ICMP32⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/file3QmGcJ/tmp/ICMP33⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filedzfZPQ/tmp/ICMP34⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filez4Cyei/tmp/ICMP35⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filewl2nXr/tmp/ICMP36⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filehCdoLC/tmp/ICMP37⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileYZ8fjv/tmp/ICMP38⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileFL3gVu/tmp/ICMP39⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileB9vhFq/tmp/ICMP40⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filedEtmVS/tmp/ICMP41⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileoCwzyj/tmp/ICMP42⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filegJiNTJ/tmp/ICMP43⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filel600Lg/tmp/ICMP44⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileYqobmc/tmp/ICMP45⤵
- Executes dropped EXE
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
92B
MD53f006f7f81fc17be7f4a0d3da0fad5de
SHA197a94d3d0654c6551057af3809b52572bd7f9f5d
SHA256982f9e0f089b91ba79df723435099df15c72e1201a45010ee60226ab136c93bf
SHA51297d2ac0057427b940ada7c0fc805c1966e2535c3c3767ca85fef4a7e0fdc9d4ef9eb133530408b1e439df067881cb317e948ad9bfd487e958a04c97d9db978e0
-
Filesize
18KB
MD5db8751f1f5e914f01db5b02a3acefc3e
SHA10093680257787599a144109cf823c37db147f8b8
SHA2569e33c85536eb3b6f86b076bc8a753da39beb66b63fa95db0761996456dd43841
SHA512a5f0e4c5e2af3870a67cc26aea3d864dfe0245809dbfcd64ae5105badb8ee6e222e693c09f3dcc8ad22bdc35a7012a2d2fded4ca3e71ff4a1ebbaf527d63e28e
-
Filesize
26KB
MD5d25194077c66aa30beebe70f2ac5c6bd
SHA151305e4815e5594196137232ef13613c1e82c8b9
SHA256c716cf2edc465e86105e644b6c61b6c26b96b529e4afbd29d4f42c9ea21eab7e
SHA5128fb5c0d7d1e970b7ffaac4162a704ddf1129efa1c7981daa79f80d8b38550b774e3d0b584dbf604d1d5f860ec93255c57f7706e01bee89cabc63af2fa1417e6c