Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

1

gosh/a

ubuntu-22.04-amd64

6

gosh/bash

ubuntu-22.04-amd64

1

gosh/common.js

ubuntu-22.04-amd64

3

gosh/go

ubuntu-22.04-amd64

6

gosh/pscan2

ubuntu-22.04-amd64

gosh/screen

ubuntu-22.04-amd64

gosh/ss

ubuntu-22.04-amd64

1

2013011906...gz.tar

ubuntu-22.04-amd64

.s/autorun

ubuntu-22.04-amd64

6

.s/bash

ubuntu-22.04-amd64

.s/inst

ubuntu-22.04-amd64

3

.s/m.vbs

ubuntu-22.04-amd64

.s/pico

ubuntu-22.04-amd64

.s/run

ubuntu-22.04-amd64

1

.s/start

ubuntu-22.04-amd64

1

.s/xh

ubuntu-22.04-amd64

2013020211...gz.tar

ubuntu-22.04-amd64

god/-sh

ubuntu-22.04-amd64

god/autorun

ubuntu-22.04-amd64

6

god/install

ubuntu-22.04-amd64

1

god/run

ubuntu-22.04-amd64

1

god/start

ubuntu-22.04-amd64

1

god/update

ubuntu-22.04-amd64

1

god/zmeu.vbs

ubuntu-22.04-amd64

sc/L

ubuntu-22.04-amd64

1

sc/exim

ubuntu-22.04-amd64

sc/ss

ubuntu-22.04-amd64

1

sc/x.pl

ubuntu-22.04-amd64

1

2013020211..._mysql

ubuntu-22.04-amd64

4

Resubmissions

23/07/2024, 21:32

240723-1d16aazdjk 1

23/07/2024, 21:32

240723-1dsh5ssgkh 6

23/07/2024, 21:10

240723-z1hrsasakd 1

Analysis

  • max time kernel
    0s
  • max time network
    506s
  • platform
    ubuntu-22.04_amd64
  • resource
    ubuntu2204-amd64-20240522.1-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2204-amd64-20240522.1-enkernel:5.15.0-105-genericlocale:en-usos:ubuntu-22.04-amd64system
  • submitted
    23/07/2024, 21:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    gosh/common.js

  • Size

    34KB

  • MD5

    dbfc44d20945f5411b715b5c725cb30c

  • SHA1

    2458c5bd32d683e7e92daaf9541f18fefd49ea2d

  • SHA256

    96cf3ce970e9d19cc1dddb190440318fe2de59cc88831f1ebe8fb47d86d1fef2

  • SHA512

    9bcc307f188e17c0027fa9c565d3af50cfcab4242a0307f9b7919868b824a530954bba01c6593dbe3b8784e9927f06c91c81bf1e1532ec4bb464bb7a0b859c58

  • SSDEEP

    768:1LJwCp2gfDH42NpshNkkOG0Qau8AkQD09WiQB4Xjxc37zuIwcm:J2FNkkHN09WiQB8U7iv

Score
3/10

Malware Config

Signatures

  • Enumerates kernel/hardware configuration 1 TTPs 2 IoCs

    Reads contents of /sys virtual filesystem to enumerate system information.

  • Reads runtime system information 3 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /usr/bin/node
    node /tmp/gosh/common.js
    1⤵
    • Enumerates kernel/hardware configuration
    • Reads runtime system information
    PID:1551

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads