Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

5

84cd0e0e82...ca.elf

debian-9-armhf

10

Analysis

  • max time kernel
    0s
  • platform
    debian-9_armhf
  • resource
    debian9-armhf-20240729-en
  • resource tags

    arch:armhfimage:debian9-armhf-20240729-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    10/10/2024, 16:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    84cd0e0e82578d86518e0b0c659b42ca.elf

  • Size

    50KB

  • MD5

    84cd0e0e82578d86518e0b0c659b42ca

  • SHA1

    d467d7ce8ec52371d8f8b9fd21afae11e42b1035

  • SHA256

    003a0699a4f2654d93c953266d1235529eea013ab7a6453f4ce5e9daabbcab28

  • SHA512

    e5a1fbe4b75efa862362735444c1148b9b9724c7f25be33cc0f6e8e352fe70d2edb6b97dd2bf38ded5f5aff13f9c418b4a1b9474b4d285ef44be91a9a3657ebc

  • SSDEEP

    768:rUsomac4FAwMdFqrUtI4BNsxXCymzD8sbuFrTPULLj9q3UELDSdf49Zc+JhfZ0LG:gsXa16dFqsBECzYUuFT/Lof8CsfWLKn

Score
10/10
miraibotnetbotnetdefense_evasiondiscovery

Malware Config

Extracted

Family

mirai

Botnet

BOTNET

Signatures

  • Mirai

    Mirai is a prevalent Linux malware infecting exposed network devices.

    botnetmirai
  • Modifies Watchdog functionality 1 TTPs 2 IoCs

    Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    defense_evasion
  • Changes its process name 1 IoCs
  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

    discovery

Processes

  • /tmp/84cd0e0e82578d86518e0b0c659b42ca.elf
    /tmp/84cd0e0e82578d86518e0b0c659b42ca.elf
    1⤵
    • Modifies Watchdog functionality
    • Changes its process name
    • Reads runtime system information
    PID:646

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads