Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
8ae0cda973e03fb245d3085d346799378949821339ac15fbe0ac4a1e28fe15e5.elf
-
Size
51KB
-
Sample
250311-ekkk8azqt8
-
MD5
250115d99bb24b31d8c33214f446d1b8
-
SHA1
873e952fa5f1ac70be8a32cfc8d7287d46790f13
-
SHA256
8ae0cda973e03fb245d3085d346799378949821339ac15fbe0ac4a1e28fe15e5
-
SHA512
f7838672a7f339a93178d0136ab8fece765bf159c19a0509a45e50488ba6bcde528501b2b0dac7219294b8fe92624ff9c538144f98f97a84410581dc1c6b2f97
-
SSDEEP
768:lajaJYIXIVl8jUoncjqBBqzl9nZZsEo2Avya5NPyXwt5jbVzmNsebsNkag:4WJUVYBqBFZKTvya5FyAt5jJqWd
Malware Config
Extracted
mirai
BOTNET
Targets
-
-
Target
8ae0cda973e03fb245d3085d346799378949821339ac15fbe0ac4a1e28fe15e5.elf
-
Size
51KB
-
MD5
250115d99bb24b31d8c33214f446d1b8
-
SHA1
873e952fa5f1ac70be8a32cfc8d7287d46790f13
-
SHA256
8ae0cda973e03fb245d3085d346799378949821339ac15fbe0ac4a1e28fe15e5
-
SHA512
f7838672a7f339a93178d0136ab8fece765bf159c19a0509a45e50488ba6bcde528501b2b0dac7219294b8fe92624ff9c538144f98f97a84410581dc1c6b2f97
-
SSDEEP
768:lajaJYIXIVl8jUoncjqBBqzl9nZZsEo2Avya5NPyXwt5jbVzmNsebsNkag:4WJUVYBqBFZKTvya5FyAt5jJqWd
Score9/10-
Contacts a large (163245) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
Renames itself
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Enumerates running processes
Discovers information about currently running processes on the system
-