Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

5

EdiAf.x86.elf

ubuntu-22.04-amd64

10

Analysis

  • max time kernel
    146s
  • max time network
    150s
  • platform
    ubuntu-22.04_amd64
  • resource
    ubuntu2204-amd64-20250307-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2204-amd64-20250307-enkernel:5.15.0-105-genericlocale:en-usos:ubuntu-22.04-amd64system
  • submitted
    16/03/2025, 11:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    EdiAf.x86.elf

  • Size

    30KB

  • MD5

    a1ad9bc913b861f4edc64291cd344c11

  • SHA1

    c30038c375f5836979770e94c3ddffd9aeb7239a

  • SHA256

    1e3cbc28cfd86429f7715bede5578f81aecc1656b4d52688ee132413c28b269f

  • SHA512

    08b7f6bb1120df3b0b519c6f4c965bddf19b2cc0fb833e84f3fe5cd206af808ddc6b5e05df4493e7c2b688d6497d4893b78e77b5cc7505809a5120e57f491aab

  • SSDEEP

    768:65Ox64mumNhAbib/NbX0lieYz6p8ojLu3VwtgEs+tFKP:6EQ4mumXjhtHGfy3ytv/jk

Score
10/10
miraiunstablebotnetdefense_evasiondiscovery

Malware Config

Extracted

Family

mirai

Botnet

UNSTABLE

C2

server1988.ignorelist.com

Signatures

  • Mirai

    Mirai is a prevalent Linux malware infecting exposed network devices.

    botnetmirai
  • Mirai family
    mirai
  • Deletes itself 1 IoCs
  • Modifies Watchdog functionality 1 TTPs 2 IoCs

    Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    defense_evasion
  • Writes file to system bin folder 2 IoCs
  • Changes its process name 1 IoCs
  • Reads runtime system information 2 IoCs

    Reads data from /proc virtual filesystem.

    discovery

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads