Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2bf2c82e29d37db4268872fa6a69f1975a62b906dec55c3c661b757bc7ba4de1.elf
-
Size
221KB
-
Sample
240904-bmkgfstcld
-
MD5
4f506b8eb662883574ea26e6ff228160
-
SHA1
ff4bd9b4f5efa63ef3c75b39f6ea5538922cc6ee
-
SHA256
2bf2c82e29d37db4268872fa6a69f1975a62b906dec55c3c661b757bc7ba4de1
-
SHA512
de8796654257a3a6df7865d3c9aefa73406d76978d0e5a7054a18e693cc73b1f99c03b3ad9b709dd9c3ee3aae73b4b6f1c631f1e1d4fa5ccbbd5631cf165863b
-
SSDEEP
3072:0DedHUcHyFzZdrvFOqmG3IEhwnYWDjS+omE5M0cNDPC/+OcKYKATVFF6:0DehUDmSIEh4YSumgMJNz8+0YKIF6
Malware Config
Targets
-
-
Target
2bf2c82e29d37db4268872fa6a69f1975a62b906dec55c3c661b757bc7ba4de1.elf
-
Size
221KB
-
MD5
4f506b8eb662883574ea26e6ff228160
-
SHA1
ff4bd9b4f5efa63ef3c75b39f6ea5538922cc6ee
-
SHA256
2bf2c82e29d37db4268872fa6a69f1975a62b906dec55c3c661b757bc7ba4de1
-
SHA512
de8796654257a3a6df7865d3c9aefa73406d76978d0e5a7054a18e693cc73b1f99c03b3ad9b709dd9c3ee3aae73b4b6f1c631f1e1d4fa5ccbbd5631cf165863b
-
SSDEEP
3072:0DedHUcHyFzZdrvFOqmG3IEhwnYWDjS+omE5M0cNDPC/+OcKYKATVFF6:0DehUDmSIEh4YSumgMJNz8+0YKIF6
Score9/10-
Contacts a large (1019663) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Deletes Audit logs
Deletes logs related to the Linux Audit framework.
-
Deletes system logs
Deletes log file which contains global system messages. Adversaries may delete system logs to minimize their footprint.
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Deletes log files
Deletes log files on the system.
-