mirai | 42b289bab7584155c626ba7be194fcf1f64490e8139a8c3db2b5df5f3c811d96 | Triage

Submit
Reports

Overview

overview

Static

static

42b289bab7...811d96

linux_amd64

8

Sharing

General

Target

42b289bab7584155c626ba7be194fcf1f64490e8139a8c3db2b5df5f3c811d96
Size

80KB
Sample

220625-ezl3ladhhr
MD5

e27abfd97f8a0a42c386c2bc6c0829b4
SHA1

66bde01f00f4c5fe5744117560dfcf04a387c63f
SHA256

42b289bab7584155c626ba7be194fcf1f64490e8139a8c3db2b5df5f3c811d96
SHA512

d16cebdf73cd33dafb4a76b8fffe4235a9c9433a4f995da99708a2310045652f88ad7e2ff41979740a33902563041a35270ff33f6549985893a260a7c1394b8f

Score

10^/10

mirai mirai_x86corona linux

Static task

static1

mirai mirai_x86corona

Behavioral task

behavioral1

Sample

42b289bab7584155c626ba7be194fcf1f64490e8139a8c3db2b5df5f3c811d96

Resource

ubuntu1804-amd64-en-20211208

linux_amd64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  42b289bab7584155c626ba7be194fcf1f64490e8139a8c3db2b5df5f3c811d96
- Size
  
  80KB
- MD5
  
  e27abfd97f8a0a42c386c2bc6c0829b4
- SHA1
  
  66bde01f00f4c5fe5744117560dfcf04a387c63f
- SHA256
  
  42b289bab7584155c626ba7be194fcf1f64490e8139a8c3db2b5df5f3c811d96
- SHA512
  
  d16cebdf73cd33dafb4a76b8fffe4235a9c9433a4f995da99708a2310045652f88ad7e2ff41979740a33902563041a35270ff33f6549985893a260a7c1394b8f
Score

8^/10
- Modifies hosts file
  Adds to hosts file used for mapping hosts to IP addresses.
- Writes DNS configuration
  Writes data to DNS resolver config file.
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Dynamic Resolution

Exfiltration

Impact

Tasks

static1

miraimirai_x86corona

behavioral1

© 2018-2025

Terms | Privacy