Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

a51ac88920...f8.vir

debian-9-armhf

3

Analysis

  • max time kernel
    1s
  • max time network
    5s
  • platform
    debian-9_armhf
  • resource
    debian9-armhf-20240611-en
  • resource tags

    arch:armhfimage:debian9-armhf-20240611-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    12/03/2025, 09:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a51ac88920838035e758b9c20912867c51f78e76bc27fb6bf57128eb7ada54f8.vir

  • Size

    4.6MB

  • MD5

    54019336e6fbb7b9e621821f9b9f0a5c

  • SHA1

    bd4a00b9194db65d78053ede828ec3107ba982cd

  • SHA256

    a51ac88920838035e758b9c20912867c51f78e76bc27fb6bf57128eb7ada54f8

  • SHA512

    08e1dd28765b65033637c97afc2d517f8179ac800b67b4897c97a8af86186f24a43cc11b028b202a3cb46389ad51c4779b5d722e63e27b124bf53dd37d30f361

  • SSDEEP

    49152:Gj9jMidSyBRoVTc8jLq3eKDrg/czUJlCCLrR1KuAb7/C:MjFdSERWTc8q3eR6/C

Score
3/10
discovery

Malware Config

Signatures

  • Enumerates kernel/hardware configuration 1 TTPs 1 IoCs

    Reads contents of /sys virtual filesystem to enumerate system information.

    discovery
  • Writes file to tmp directory 1 IoCs

    Malware often drops required files in the /tmp directory.

Processes

  • /tmp/a51ac88920838035e758b9c20912867c51f78e76bc27fb6bf57128eb7ada54f8.vir
    /tmp/a51ac88920838035e758b9c20912867c51f78e76bc27fb6bf57128eb7ada54f8.vir
    1⤵
    • Enumerates kernel/hardware configuration
    • Writes file to tmp directory
    PID:658

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads