Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

385dc50487...73.elf

debian-9-mips

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    385dc504873958e9d0da7ef096cf9e554f9084c6de7518eaf5fb49b5a75cc673.elf

  • Size

    99KB

  • Sample

    241010-bvx3hsygmr

  • MD5

    8e44ae3067e4ab3bf3fa24c75793bc33

  • SHA1

    28905da112d985fd0cf61e97377fed6bd2ea97b2

  • SHA256

    385dc504873958e9d0da7ef096cf9e554f9084c6de7518eaf5fb49b5a75cc673

  • SHA512

    ff17f4952c414863dafaadd26ceceeab61e7453ddcb5a2412dcf1b0aa6c9e2857d5c718ba4a8ee7a41c4f1343bbbaa17652d2ca4bb32e6e16ee5428a6aff886e

  • SSDEEP

    3072:SPJMMVsVo6td1NF94GtWnhvEaw68MQYTZcqM:uJxOolhvmZGFcqM

Score
10/10
miraibotnetdiscovery

Malware Config

Extracted

Family

mirai

Botnet

BOTNET

Targets

    • Target

      385dc504873958e9d0da7ef096cf9e554f9084c6de7518eaf5fb49b5a75cc673.elf

    • Size

      99KB

    • MD5

      8e44ae3067e4ab3bf3fa24c75793bc33

    • SHA1

      28905da112d985fd0cf61e97377fed6bd2ea97b2

    • SHA256

      385dc504873958e9d0da7ef096cf9e554f9084c6de7518eaf5fb49b5a75cc673

    • SHA512

      ff17f4952c414863dafaadd26ceceeab61e7453ddcb5a2412dcf1b0aa6c9e2857d5c718ba4a8ee7a41c4f1343bbbaa17652d2ca4bb32e6e16ee5428a6aff886e

    • SSDEEP

      3072:SPJMMVsVo6td1NF94GtWnhvEaw68MQYTZcqM:uJxOolhvmZGFcqM

    Score
    9/10
    discovery

    • Contacts a large (245043) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Renames itself

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks