Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

a4f64b48e2...e7.elf

debian-12-mipsel

7

Analysis

  • max time kernel
    151s
  • max time network
    153s
  • platform
    debian-12_mipsel
  • resource
    debian12-mipsel-20240221-en
  • resource tags

    arch:mipselimage:debian12-mipsel-20240221-enkernel:6.1.0-17-4kc-maltalocale:en-usos:debian-12-mipselsystem
  • submitted
    02/02/2025, 04:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a4f64b48e28ea2c6eecef1e58f77ca86853bb3e26405c0608879fbe42191bae7.elf

  • Size

    66KB

  • MD5

    e4faad8308ce38d8b11bb0c80273186b

  • SHA1

    2975a9de732111199480b910b8450da7be802884

  • SHA256

    a4f64b48e28ea2c6eecef1e58f77ca86853bb3e26405c0608879fbe42191bae7

  • SHA512

    5904613fff4990943c7e200292a429b44abc199d83af16dca9329cfeeb6deb132d489f3819f4bf7affff6280d637e67f084025cb6075dade624cf2214699eb7b

  • SSDEEP

    768:i79+h7ifbq19xCj3dQ5Qb20g4Kqd5gfevteo1etFKnxJ96Xir/5wMXyZ6:i794izq19Yjm1/4/damt91AFKnHRX1

Score
7/10
defense_evasion

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Modifies Watchdog functionality 1 TTPs 2 IoCs

    Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    defense_evasion
  • Renames itself 1 IoCs
  • Unexpected DNS network traffic destination 1 IoCs

    Network traffic to other servers than the configured DNS servers was detected on the DNS port.

  • Changes its process name 1 IoCs

Processes

  • /tmp/a4f64b48e28ea2c6eecef1e58f77ca86853bb3e26405c0608879fbe42191bae7.elf
    /tmp/a4f64b48e28ea2c6eecef1e58f77ca86853bb3e26405c0608879fbe42191bae7.elf
    1⤵
    • Deletes itself
    • Modifies Watchdog functionality
    • Renames itself
    • Changes its process name
    PID:744

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads