Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    boatnet.x86.elf

  • Size

    21KB

  • Sample

    250205-arvbsa1qdm

  • MD5

    3ce0ac1372f696c0c018b397fa864364

  • SHA1

    67a7c0f3d4dcc353d3b916f6b9217bdc9f70d60c

  • SHA256

    67fa1fdd741361dcf8166030b0f8ba08d5783626b670e6634ec2fb12787af32e

  • SHA512

    06f376a0e9ef40259147b92463e84a8e71a9243956a7c17d6535bf02f13f257de05ff428ab563914cdbd03a36be8ddb7ebdc6b41fdf5aac1701bfa7be40dbd9e

  • SSDEEP

    384:MQ9/Z90VktxqlIb1hRKK+VAJKZ8b6O4mBWkogv2h/j4xX0KxUAM/yhwTYSyq:7bGktxq2bHR8A8O4QWzCxlxa/yS0q

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      boatnet.x86.elf

    • Size

      21KB

    • MD5

      3ce0ac1372f696c0c018b397fa864364

    • SHA1

      67a7c0f3d4dcc353d3b916f6b9217bdc9f70d60c

    • SHA256

      67fa1fdd741361dcf8166030b0f8ba08d5783626b670e6634ec2fb12787af32e

    • SHA512

      06f376a0e9ef40259147b92463e84a8e71a9243956a7c17d6535bf02f13f257de05ff428ab563914cdbd03a36be8ddb7ebdc6b41fdf5aac1701bfa7be40dbd9e

    • SSDEEP

      384:MQ9/Z90VktxqlIb1hRKK+VAJKZ8b6O4mBWkogv2h/j4xX0KxUAM/yhwTYSyq:7bGktxq2bHR8A8O4QWzCxlxa/yS0q

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

    • Mirai family

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Writes file to system bin folder

MITRE ATT&CK Enterprise v15

Tasks