General
-
Target
087197e145562c763acad7f21b1c0462.elf
-
Size
139KB
-
Sample
220910-g8bz4adddm
-
MD5
087197e145562c763acad7f21b1c0462
-
SHA1
1e36d6391d59471f69b63496f833efdb4de1da14
-
SHA256
a39f3dc2230198215502d7efc849fd76a7c0f6bae6c216af24660d4a6ed0f101
-
SHA512
587f653473a85fab0c5178f86951eabf018901337eead18a2920ff4d7e3a5d8907e0a76ea0af6aff1c3f7df0ed58a80cf6b59cd6ba655e8ed288392b1e464670
-
SSDEEP
3072:Cv/WwsLgaq353qHiCOvhOpMqkDQHbeskmhxQwoVSUNu:KPLaq351hOpMqkLskmhxQwoVSUNu
Malware Config
Targets
-
-
Target
087197e145562c763acad7f21b1c0462.elf
-
Size
139KB
-
MD5
087197e145562c763acad7f21b1c0462
-
SHA1
1e36d6391d59471f69b63496f833efdb4de1da14
-
SHA256
a39f3dc2230198215502d7efc849fd76a7c0f6bae6c216af24660d4a6ed0f101
-
SHA512
587f653473a85fab0c5178f86951eabf018901337eead18a2920ff4d7e3a5d8907e0a76ea0af6aff1c3f7df0ed58a80cf6b59cd6ba655e8ed288392b1e464670
-
SSDEEP
3072:Cv/WwsLgaq353qHiCOvhOpMqkDQHbeskmhxQwoVSUNu:KPLaq351hOpMqkLskmhxQwoVSUNu
Score9/10-
Modifies the Watchdog daemon
Malware like Mirai modify the Watchdog to prevent it restarting an infected system.
-
Reads system routing table
Gets active network interfaces from /proc virtual filesystem.
-
Reads system network configuration
Uses contents of /proc filesystem to enumerate network settings.
-