Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

5

YeOJhYQjui.elf

ubuntu-24.04-amd64

3

Analysis

  • max time kernel
    0s
  • max time network
    128s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240523-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    03/10/2024, 18:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    YeOJhYQjui.elf

  • Size

    2.3MB

  • MD5

    1a6dca8ef99e58ed2ba95ad46c4e0591

  • SHA1

    57bc39a1ee7f78bf1325d42f52fac2fc765e80de

  • SHA256

    e266522260258ca88b5659042f103dff04b65e1c5aeb8423545df1e1cde0718f

  • SHA512

    85803ed8d10b3f4fdf3e6711e2e5d7565252c5a0244051cb141ea701a9108b939dcb80176844543a72db13b388f0a61ba1d2e5df5f0f41f8145991a929281c8d

  • SSDEEP

    49152:gSTThuIhuiywLRV7G6w8HMl7X0oTP0XX7zgm4GIePfyVxSV1IqjzdWs13N76DB:ZJzuMLz7G6u0oTPULE+p6yjzYsBmB

Score
3/10
discovery

Malware Config

Signatures

  • Enumerates kernel/hardware configuration 1 TTPs 1 IoCs

    Reads contents of /sys virtual filesystem to enumerate system information.

    discovery
  • Reads runtime system information 4 IoCs

    Reads data from /proc virtual filesystem.

    discovery

Processes

  • /tmp/YeOJhYQjui.elf
    /tmp/YeOJhYQjui.elf
    1⤵
    • Enumerates kernel/hardware configuration
    • Reads runtime system information
    PID:2449

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads