Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    arm5.elf

  • Size

    77KB

  • Sample

    241117-gj5wwatajp

  • MD5

    2faa8073d940f1b5baf7db8a48b09e92

  • SHA1

    41b0c6081b7c88cb45f30fc73c33754541fc2a7b

  • SHA256

    a6a49053229e82ce4db5fad9e2547a4b9280d90c957c3f496aa22de04277983d

  • SHA512

    ddc486c50a62edef6f0bafc53c62cadac1cd895ae71d81cc1e7c88ffd426767b2892085b2edb89f3ce2c07430b43ef6177487d73fd225b41e687d98b49965fe4

  • SSDEEP

    1536:D9AwQ5LBChVhF5luaJf99HW0E5Ujgt3Twzyeyw0xRPFsvPvaqz4uQ:D9pmBq/zJFE0E5Ujg1kOeyw0FElz4

Score
10/10

Malware Config

Extracted

Family

mirai

Botnet

BOTNET

Targets

    • Target

      arm5.elf

    • Size

      77KB

    • MD5

      2faa8073d940f1b5baf7db8a48b09e92

    • SHA1

      41b0c6081b7c88cb45f30fc73c33754541fc2a7b

    • SHA256

      a6a49053229e82ce4db5fad9e2547a4b9280d90c957c3f496aa22de04277983d

    • SHA512

      ddc486c50a62edef6f0bafc53c62cadac1cd895ae71d81cc1e7c88ffd426767b2892085b2edb89f3ce2c07430b43ef6177487d73fd225b41e687d98b49965fe4

    • SSDEEP

      1536:D9AwQ5LBChVhF5luaJf99HW0E5Ujgt3Twzyeyw0xRPFsvPvaqz4uQ:D9pmBq/zJFE0E5Ujg1kOeyw0FElz4

    Score
    9/10
    • Contacts a large (572258) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

MITRE ATT&CK Enterprise v15

Tasks