Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

donk.x86.elf

ubuntu-22.04-amd64

7

Analysis

  • max time kernel
    144s
  • max time network
    145s
  • platform
    ubuntu-22.04_amd64
  • resource
    ubuntu2204-amd64-20240522.1-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2204-amd64-20240522.1-enkernel:5.15.0-105-genericlocale:en-usos:ubuntu-22.04-amd64system
  • submitted
    06/03/2025, 03:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    donk.x86.elf

  • Size

    62KB

  • MD5

    e7ede966cdb6c65c846c565d71a41fe1

  • SHA1

    5a179d3484609a67d834b98e61abe15eedc5b048

  • SHA256

    9d404ad212a102d624f3252653f6edf8f6c72254a11e5cf1661a077f659324dc

  • SHA512

    218b605f45705d55a81e3e51ede502fe834b9d5cd53c656b2c31bb83db7baee54e4dc3c98bab9bb80c5f0a48f2c8bb1e3d6d7837b10ca894e8c7a7e8a4777672

  • SSDEEP

    1536:Rkkiirjwnh3A1HsyjmIdyYWCQtQQxBNSdnLrt:Oyrjwnh3AdsyjDdDW3ZxBGLrt

Score
7/10
defense_evasiondiscovery

Malware Config

Signatures

  • Modifies Watchdog functionality 1 TTPs 2 IoCs

    Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    defense_evasion
  • Enumerates active TCP sockets 1 TTPs 1 IoCs

    Gets active TCP sockets from /proc virtual filesystem.

    discovery
  • Writes file to system bin folder 1 IoCs
  • Changes its process name 1 IoCs
  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

    discovery

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads