Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    da68cb651d48d11bf83a598925a6ed52.bin

  • Size

    40KB

  • Sample

    250103-b2763axlaq

  • MD5

    11f6d7a61498e36623e99e5a7d1d6b17

  • SHA1

    eda1bb72e5e5f55aa55f07b5c6e231bc9be2dbbb

  • SHA256

    e0d932d69b6278f310a4eaa4c6fefc249a577b7577885737a1ea46103b77b9f4

  • SHA512

    5e4d5083a298525e28678481a7e4c28a7507a1905040ad356329daeb6e545929b3ef7a28e59dd0f8c98ca3702c5be0d7a2eb6ccdff012f81a9a5a347ae68f16a

  • SSDEEP

    768:pbvwPZGq+w1zxs6CA+bDjP9KTkEZeiOKp2x2K+OvU4pO3TPCMuVnIWfxNfSBgqYE:pjCb1zxs6CF4kEa2K7+PCM8nZxNKBgq1

Malware Config

Extracted

Family

mirai

Botnet

MIRAI

Targets

    • Target

      032cf8eb1b8ef8bbae9d5a68aca6221cc92f344fe1e81ba47d506d85dc9c1499.elf

    • Size

      103KB

    • MD5

      da68cb651d48d11bf83a598925a6ed52

    • SHA1

      c262e4c03601cc039c4671c2da5f9339c5c8fd16

    • SHA256

      032cf8eb1b8ef8bbae9d5a68aca6221cc92f344fe1e81ba47d506d85dc9c1499

    • SHA512

      c4d83a2250f4244afe30f55be5e740c2b47f68adfc358ebd686e5a4e994e6b015c630511df90998153cfd94c89bacefd200fcb2c1bedf3616dc390a087a856c7

    • SSDEEP

      1536:zO9Bm/RtCZiqr33Dc48uuwr7CFKygt6c9e8WDC1ieMbFXIg:yBm/zCZiyn448uuPRgt6c9e8YC1GFXP

    • Deletes Audit logs

      Deletes logs related to the Linux Audit framework.

    • Deletes itself

    • Deletes system logs

      Deletes log file which contains global system messages. Adversaries may delete system logs to minimize their footprint.

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Deletes log files

      Deletes log files on the system.

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Modifies systemd

      Adds/ modifies systemd service files. Likely to achieve persistence.

MITRE ATT&CK Enterprise v15

Tasks