Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c930c9cb86afa77d4f0ccee8e6db3dc45f7ec19d65ef91324ee6323304a9d848.sh

  • Size

    2KB

  • Sample

    240919-b6q4cavbkh

  • MD5

    4a893c8353bab065303d261e80d3eaa4

  • SHA1

    eba1f6ee2352f61f1f7a900c7c81627392ede189

  • SHA256

    c930c9cb86afa77d4f0ccee8e6db3dc45f7ec19d65ef91324ee6323304a9d848

  • SHA512

    d53e6bec33758285fd800579832ceace3cca32c4fb10517f933a875b7a1de067368d436847865797bfdcd63e0e7d1f6a11f1966fe7b2380d72a03c27370d8102

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Extracted

Family

mirai

Botnet

LZRD

Extracted

Family

mirai

Botnet

LZRD

Extracted

Family

mirai

Botnet

LZRD

Extracted

Family

mirai

Botnet

LZRD

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      c930c9cb86afa77d4f0ccee8e6db3dc45f7ec19d65ef91324ee6323304a9d848.sh

    • Size

      2KB

    • MD5

      4a893c8353bab065303d261e80d3eaa4

    • SHA1

      eba1f6ee2352f61f1f7a900c7c81627392ede189

    • SHA256

      c930c9cb86afa77d4f0ccee8e6db3dc45f7ec19d65ef91324ee6323304a9d848

    • SHA512

      d53e6bec33758285fd800579832ceace3cca32c4fb10517f933a875b7a1de067368d436847865797bfdcd63e0e7d1f6a11f1966fe7b2380d72a03c27370d8102

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

    • Executes dropped EXE

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Writes file to system bin folder

MITRE ATT&CK Enterprise v15

Tasks