f757e165bcf95783d5611ee337ffbcf7867ea96069d47590a5a3fd85d8e71c96 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

dce7dbf29e...f5.elf

ubuntu-24.04-amd64

7

Sharing

General

Target

746586da6ee47b60efa41176202128cb.bin
Size

75KB
Sample

240819-bvcrkszdnp
MD5

774873345963d0acae48a03623bab579
SHA1

a98f92d7472423fe6680e6b19ca32656a2939cee
SHA256

f757e165bcf95783d5611ee337ffbcf7867ea96069d47590a5a3fd85d8e71c96
SHA512

d7a834602040584f6fbfba284427ae095444ff14ea2bd2875bdfa69c5064c1892bfe61f2eae5e77c52292db6d4694ec1a89aa269d3889b67186111f5dd2f62d8
SSDEEP

1536:87Gdo11z7/svrhezPkyVo7YD1wUQSn25T6LmmBwsgONH:8ugsvr4HD1wUQS2d4mmBwsgONH

Score

7^/10

linux rootkit

Static task

static1

Behavioral task

behavioral1

Sample

dce7dbf29e3df07a0914a0f6b8d010480842cca8c608cebd5814a04f4d1564f5.elf

Resource

ubuntu2404-amd64-20240523-en

ubuntu-24.04-amd64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  dce7dbf29e3df07a0914a0f6b8d010480842cca8c608cebd5814a04f4d1564f5.elf
- Size
  
  150KB
- MD5
  
  746586da6ee47b60efa41176202128cb
- SHA1
  
  63cf25bb5af5ebc7eb80f0a2a65c077d76268d12
- SHA256
  
  dce7dbf29e3df07a0914a0f6b8d010480842cca8c608cebd5814a04f4d1564f5
- SHA512
  
  c6455507b360dbddc67759785852193d0958ed89ce235a0d38572e91928a543191c7a037d8f70e319878b9147f93ab79dfe6476b2724f0ead34af8831f0dd349
- SSDEEP
  
  3072:For3xYE/GAc2+Q1pbz7c5V4HBvW5VcSAbvRLTlawuJxL7ETyH5vU4:Crp/GqpjE/4H6c/hXgxhHdL
Score

7^/10

rootkit
- Loads a kernel module
  Loads a Linux kernel module, potentially to achieve persistence
  rootkit
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy