Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

1de12614bd...38.elf

ubuntu-22.04-amd64

6

Analysis

  • max time kernel
    5s
  • max time network
    129s
  • platform
    ubuntu-22.04_amd64
  • resource
    ubuntu2204-amd64-20250307-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2204-amd64-20250307-enkernel:5.15.0-105-genericlocale:en-usos:ubuntu-22.04-amd64system
  • submitted
    20/03/2025, 02:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1de12614bd0d57e501402d8c8af3c8f1e0b9e5a2fbc2476b7a0cdba71046e538.elf

  • Size

    77KB

  • MD5

    bf29e924c0a0d2d92644d7e1e80663b7

  • SHA1

    6b921f2dc9cf861807e1d6093ce1b1bb5ab93467

  • SHA256

    1de12614bd0d57e501402d8c8af3c8f1e0b9e5a2fbc2476b7a0cdba71046e538

  • SHA512

    e702071edff3d9e394aa43f06e91e0b7909b1f5be6a3551c9cee20b2b072d8fa020db025df37c15cbdd4c39b8f2549a242f0b58a93bf3fb7494b5f14e7487c3b

  • SSDEEP

    1536:BlFYmKcCftaTYw2MVvis4iGrJfo4JhblfdggS0/pNoK/nL487KK+w5r5:/FYm+1aB2MVmpJHflJNoK/L4DQ

Score
6/10
discovery

Malware Config

Signatures

  • Enumerates active TCP sockets 1 TTPs 1 IoCs

    Gets active TCP sockets from /proc virtual filesystem.

    discovery
  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

    discovery

Processes

  • /tmp/1de12614bd0d57e501402d8c8af3c8f1e0b9e5a2fbc2476b7a0cdba71046e538.elf
    /tmp/1de12614bd0d57e501402d8c8af3c8f1e0b9e5a2fbc2476b7a0cdba71046e538.elf
    1⤵
    • Enumerates active TCP sockets
    • Reads system network configuration
    PID:1576

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads