Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
307c851a7a0c4b7dd8afd2abd662480c.bin
-
Size
50KB
-
Sample
240903-bgm1dssepq
-
MD5
78b3b686d0fdf6b7d6f91b88848d5235
-
SHA1
119cf81e82315cc773304ad8483b4e79ebd59fec
-
SHA256
a5e49197eef420712112f442602b66b5e9ea702454b87b9bdac9e833b161cfa4
-
SHA512
d3ffb6375d7cbcc26dabdb448d5570a6fa59a44e7f5b275cf77f5c9c3600135f143cc867bb874802bd9adc25443c6d9f62ff36bee4227c917bc0ab059a5b90e5
-
SSDEEP
768:3R9TaShQlV5QpgorWFIpJ5OTO8HmvakrkJt87kybV8Z1OikhisspJT9k/NtL:B9Ta7li3y8J5OCyaKtkkWquikhinU/T
Malware Config
Extracted
mirai
www.ckea.ru
www.akck.ru
45.152.112.46
Targets
-
-
Target
6d7a2a182467276297c8a84a5d2840e7ee335fb985f63cda9e618b229973e1a2.elf
-
Size
93KB
-
MD5
307c851a7a0c4b7dd8afd2abd662480c
-
SHA1
4e2b66521a16a174fcd6581357d289f1ede59cb1
-
SHA256
6d7a2a182467276297c8a84a5d2840e7ee335fb985f63cda9e618b229973e1a2
-
SHA512
fd222411e33c1a658efd61c58ea10b634fea81ced709db7f15789ef6733da0c7c211cd218780c1e598e27b7f71525824282348f30d65ed394756060800cda5e2
-
SSDEEP
1536:2UoxPa6IgF/tlrHa81oSxmJn9u6eucjFb3F9Ubij1DYxl3xQHrHhd+NP:RyP1IgF/D681xxco6RcjFb3F6b49YnCs
Score10/10-
Mirai
Mirai is a prevalent Linux malware infecting exposed network devices.
-
Contacts a large (23046) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Loads a kernel module
Loads a Linux kernel module, potentially to achieve persistence
-
Creates/modifies Cron job
Cron allows running tasks on a schedule, and is commonly used for malware persistence.
-