General
-
Target
253840c1b3d2b310f4b911e02ff99a88
-
Size
113KB
-
Sample
220822-kyv7rsgee3
-
MD5
253840c1b3d2b310f4b911e02ff99a88
-
SHA1
46142ee3171e77f8016d4f911fd182f8dccfc87b
-
SHA256
6d5c7f978461ad4257cf22767f99415b90b888f74955e2ca4f3308556611c399
-
SHA512
889bad16b9b584b52bab532a19494f04380acf3abeee8897c4fa44a35ee281c7e040acd975d09ab77895fd3d28b73938b50c3b99edf764cd8d72fbb143b565cf
-
SSDEEP
3072:kiry859a2ADJf9wHYqbgFFo8+HeAH+TRCm7FnVqfJXFWbNb:T9a2aLqkrMesm7FnVqfJXFWbNb
Malware Config
Targets
-
-
Target
253840c1b3d2b310f4b911e02ff99a88
-
Size
113KB
-
MD5
253840c1b3d2b310f4b911e02ff99a88
-
SHA1
46142ee3171e77f8016d4f911fd182f8dccfc87b
-
SHA256
6d5c7f978461ad4257cf22767f99415b90b888f74955e2ca4f3308556611c399
-
SHA512
889bad16b9b584b52bab532a19494f04380acf3abeee8897c4fa44a35ee281c7e040acd975d09ab77895fd3d28b73938b50c3b99edf764cd8d72fbb143b565cf
-
SSDEEP
3072:kiry859a2ADJf9wHYqbgFFo8+HeAH+TRCm7FnVqfJXFWbNb:T9a2aLqkrMesm7FnVqfJXFWbNb
Score9/10-
Modifies the Watchdog daemon
Malware like Mirai modify the Watchdog to prevent it restarting an infected system.
-
Reads system routing table
Gets active network interfaces from /proc virtual filesystem.
-
Reads system network configuration
Uses contents of /proc filesystem to enumerate network settings.
-