Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
149s -
max time network
129s -
platform
ubuntu-24.04_amd64 -
resource
ubuntu2404-amd64-20240729-en -
resource tags
arch:amd64arch:i386image:ubuntu2404-amd64-20240729-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system -
submitted
18/02/2025, 06:58
Behavioral task
behavioral1
Sample
h.elf
Resource
ubuntu2404-amd64-20240729-en
ubuntu-24.04-amd64
1 signatures
150 seconds
General
-
Target
h.elf
-
Size
97KB
-
MD5
7ad8966e2134aed972b9e7e608f44740
-
SHA1
c3490fca6ca16732fa6cedb7b2c03a161e120238
-
SHA256
a7522577f8d5427a39b07628b69b0691b30317df0f225d7e24b09e1760ebe724
-
SHA512
047777a46117fa5419b2c8aaaea635eb2d209afff8bc516c8652eeca624a86e961e1d568fd9d3fcf543afd60f262e8857a93dddcc7bb91c2acdc66f5bf20c34e
-
SSDEEP
3072:CEajWPQP39VjGWX7UAV4ReEbe3U7LTPbeRXnf0OzTyoQQub:C2QP39VjGWXEi3UzPbeRXnf0OzTyoQQ0
Score
7/10
Malware Config
Signatures
-
Loads a kernel module 64 IoCs
Loads a Linux kernel module, potentially to achieve persistence
pid Process 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf 2491 h.elf