Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3ccfec6068f0df7a18ccb5a9a1f94ef3cdfd4648ed950ac33125cf0c8ac7a4e3.elf

  • Size

    103KB

  • Sample

    241118-cmzrtavpgs

  • MD5

    8ecafda00f1f5e5f8e94a10bb94d79b3

  • SHA1

    3c6f512e0f23189ac5e7d9c416c188a3c02f0bd8

  • SHA256

    3ccfec6068f0df7a18ccb5a9a1f94ef3cdfd4648ed950ac33125cf0c8ac7a4e3

  • SHA512

    dd3d09678cf5fe875ebccc084d73bbc08ae4d4927075a68a6c007bb791dcf36829b30f71c9cbd4572b7cc37c3a4cd2b18b8c00e50971ac527252c9b822398b1c

  • SSDEEP

    3072:Wole8S49Ii7Kr7AaaPhEMWWn0oL9o2cuFUjhzZj+:jlenOTaaPhEMWW0oLhckULj+

Score
10/10

Malware Config

Extracted

Family

mirai

Botnet

BOTNET

Targets

    • Target

      3ccfec6068f0df7a18ccb5a9a1f94ef3cdfd4648ed950ac33125cf0c8ac7a4e3.elf

    • Size

      103KB

    • MD5

      8ecafda00f1f5e5f8e94a10bb94d79b3

    • SHA1

      3c6f512e0f23189ac5e7d9c416c188a3c02f0bd8

    • SHA256

      3ccfec6068f0df7a18ccb5a9a1f94ef3cdfd4648ed950ac33125cf0c8ac7a4e3

    • SHA512

      dd3d09678cf5fe875ebccc084d73bbc08ae4d4927075a68a6c007bb791dcf36829b30f71c9cbd4572b7cc37c3a4cd2b18b8c00e50971ac527252c9b822398b1c

    • SSDEEP

      3072:Wole8S49Ii7Kr7AaaPhEMWWn0oL9o2cuFUjhzZj+:jlenOTaaPhEMWW0oLhckULj+

    Score
    9/10
    • Contacts a large (286998) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

MITRE ATT&CK Enterprise v15

Tasks