Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

zboti586.elf

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    115s
  • max time network
    131s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240523-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    26/02/2025, 17:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    zboti586.elf

  • Size

    156KB

  • MD5

    8b9d28ae47aafb38db4aded3c2492220

  • SHA1

    dd2abb755f2a9e5de6e55549f1c9221e54ed82aa

  • SHA256

    210c65c6af61d62146925dbe5821f90e8eb9282775fb48921bb573facc478c52

  • SHA512

    8cc08afbcbc6454b023fc755b69f72b96f729a15a7e58b0b4449bb08d62ca7b748fa0fb65c38022576b9b5e7c0f7db344b019f6c702bfb7a9885a994e0c63c65

  • SSDEEP

    3072:lvSVOIZ+3/lZ+s/VuIF5mJ5WXipBRntQL1RTAhHflATpenk:lvIe9gGgIFQJ5uCntQL1RTAhHflATpek

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 4 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/zboti586.elf
    /tmp/zboti586.elf
    1⤵
    • Loads a kernel module
    PID:2476

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads