Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
da68cb651d48d11bf83a598925a6ed52.bin
-
Size
40KB
-
Sample
250103-b2763axlaq
-
MD5
11f6d7a61498e36623e99e5a7d1d6b17
-
SHA1
eda1bb72e5e5f55aa55f07b5c6e231bc9be2dbbb
-
SHA256
e0d932d69b6278f310a4eaa4c6fefc249a577b7577885737a1ea46103b77b9f4
-
SHA512
5e4d5083a298525e28678481a7e4c28a7507a1905040ad356329daeb6e545929b3ef7a28e59dd0f8c98ca3702c5be0d7a2eb6ccdff012f81a9a5a347ae68f16a
-
SSDEEP
768:pbvwPZGq+w1zxs6CA+bDjP9KTkEZeiOKp2x2K+OvU4pO3TPCMuVnIWfxNfSBgqYE:pjCb1zxs6CF4kEa2K7+PCM8nZxNKBgq1
Behavioral task
behavioral1
Sample
032cf8eb1b8ef8bbae9d5a68aca6221cc92f344fe1e81ba47d506d85dc9c1499.elf
Resource
debian9-mipsbe-20240611-en
Malware Config
Extracted
mirai
MIRAI
Targets
-
-
Target
032cf8eb1b8ef8bbae9d5a68aca6221cc92f344fe1e81ba47d506d85dc9c1499.elf
-
Size
103KB
-
MD5
da68cb651d48d11bf83a598925a6ed52
-
SHA1
c262e4c03601cc039c4671c2da5f9339c5c8fd16
-
SHA256
032cf8eb1b8ef8bbae9d5a68aca6221cc92f344fe1e81ba47d506d85dc9c1499
-
SHA512
c4d83a2250f4244afe30f55be5e740c2b47f68adfc358ebd686e5a4e994e6b015c630511df90998153cfd94c89bacefd200fcb2c1bedf3616dc390a087a856c7
-
SSDEEP
1536:zO9Bm/RtCZiqr33Dc48uuwr7CFKygt6c9e8WDC1ieMbFXIg:yBm/zCZiyn448uuPRgt6c9e8YC1GFXP
-
Deletes itself
-
Deletes system logs
Deletes log file which contains global system messages. Adversaries may delete system logs to minimize their footprint.
-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
Enumerates running processes
Discovers information about currently running processes on the system
-
Modifies systemd
Adds/ modifies systemd service files. Likely to achieve persistence.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1XDG Autostart Entries
1Create or Modify System Process
1Systemd Service
1Privilege Escalation
Boot or Logon Autostart Execution
1XDG Autostart Entries
1Create or Modify System Process
1Systemd Service
1