Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

m-i.p-s.Sakura.elf

debian-9-mips

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    m-i.p-s.Sakura.elf

  • Size

    123KB

  • Sample

    250218-xzeydswndx

  • MD5

    488388cbab02fb43963a915d74b262c1

  • SHA1

    09011bf0c0a2e445303100c2b2c10e90bb229f93

  • SHA256

    004ae4e6baf52c9730a60c3246ad3bbe00e0aac5cd101dd656091dabd0f021e2

  • SHA512

    22447a7ef4d886448cb081fc29f3b3dfd5f3b5f984145aa513daf46f1a8a8c849d826ad01f41d35f80763d0382b791c3d754d6e30520fbb2c271f7a182414767

  • SSDEEP

    1536:g7je1TYGq+f+A02rKXzeve1eTe8p2rKXIeum9Y0GAzQj1l72HBeWERLWfRZrmW+i:/a1UW0MZQHcB6RZrmW+IFB1Dt1hR/

Score
10/10
gafgytdiscovery

Malware Config

Extracted

Family

gafgyt

C2

205.185.115.242:12345

Targets

    • Target

      m-i.p-s.Sakura.elf

    • Size

      123KB

    • MD5

      488388cbab02fb43963a915d74b262c1

    • SHA1

      09011bf0c0a2e445303100c2b2c10e90bb229f93

    • SHA256

      004ae4e6baf52c9730a60c3246ad3bbe00e0aac5cd101dd656091dabd0f021e2

    • SHA512

      22447a7ef4d886448cb081fc29f3b3dfd5f3b5f984145aa513daf46f1a8a8c849d826ad01f41d35f80763d0382b791c3d754d6e30520fbb2c271f7a182414767

    • SSDEEP

      1536:g7je1TYGq+f+A02rKXzeve1eTe8p2rKXIeum9Y0GAzQj1l72HBeWERLWfRZrmW+i:/a1UW0MZQHcB6RZrmW+IFB1Dt1hR/

    Score
    6/10
    discovery

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks