mirai | ab0df35e7866d8841fc8976de6ce56d2e90ed9af1f2602f2895628050dea63b8 | Triage

Submit
Reports

Overview

overview

Static

static

i586-20220816-1117

ubuntu-18.04-amd64

9

Sharing

General

Target

i586-20220816-1117
Size

61KB
Sample

220816-neacqsbbc9
MD5

51908da10302f478e101fc8d27c250ca
SHA1

706de82795d4cbed7a51d2f5beec2f8150ebb8a6
SHA256

ab0df35e7866d8841fc8976de6ce56d2e90ed9af1f2602f2895628050dea63b8
SHA512

c8121cc15cb8628c946d68ee8592f1d8ffe05779b233094db0d47252cdad677c61e13ce2798afec3f3a1c14f52e418b0541ed589719692fbddfa7484248f2531

Score

10^/10

mirai discovery linux

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

i586-20220816-1117

Resource

ubuntu1804-amd64-en-20211208

ubuntu-18.04-amd64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  i586-20220816-1117
- Size
  
  61KB
- MD5
  
  51908da10302f478e101fc8d27c250ca
- SHA1
  
  706de82795d4cbed7a51d2f5beec2f8150ebb8a6
- SHA256
  
  ab0df35e7866d8841fc8976de6ce56d2e90ed9af1f2602f2895628050dea63b8
- SHA512
  
  c8121cc15cb8628c946d68ee8592f1d8ffe05779b233094db0d47252cdad677c61e13ce2798afec3f3a1c14f52e418b0541ed589719692fbddfa7484248f2531
Score

9^/10

discovery
- Contacts a large (23670) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy