mirai | fff0a8e4205d31fdd8d741a6543d43dd476940c3874566856ba16914be74f675 | Triage

Submit
Reports

Overview

overview

Static

static

39c597b2bb...25.elf

ubuntu-18.04-amd64

9

Sharing

General

Target

39c597b2bb21a89151f76ab44f205f25.elf
Size

136KB
Sample

220913-hd3d8safhl
MD5

39c597b2bb21a89151f76ab44f205f25
SHA1

90bc7f339c58b0695cea7385735e43df75f36d88
SHA256

fff0a8e4205d31fdd8d741a6543d43dd476940c3874566856ba16914be74f675
SHA512

f89e855351587fc80ccc8ef33cea1c38bcc61b8d1fccd17bacf7b767a65042e60be928814f59ed989b46db8167e2ba24c75167f601dc1e41bbaa80ad3a8264e2
SSDEEP

3072:XhFBviclJqJo6uBlKJaT4qJnsjCHE0vewbXGyTNxGwC:X7BPlAy6gKedp6c3C

Score

10^/10

mirai mirai_x86corona discovery linux

Static task

static1

mirai mirai_x86corona

4 signatures

Behavioral task

behavioral1

Sample

39c597b2bb21a89151f76ab44f205f25.elf

Resource

ubuntu1804-amd64-en-20211208

ubuntu-18.04-amd64

2 signatures

150 seconds

Malware Config

Extracted

Family

mirai

C2

564sfacnc.duckdns.org

1a5gascan.duckdns.org

Targets

- Target
  
  39c597b2bb21a89151f76ab44f205f25.elf
- Size
  
  136KB
- MD5
  
  39c597b2bb21a89151f76ab44f205f25
- SHA1
  
  90bc7f339c58b0695cea7385735e43df75f36d88
- SHA256
  
  fff0a8e4205d31fdd8d741a6543d43dd476940c3874566856ba16914be74f675
- SHA512
  
  f89e855351587fc80ccc8ef33cea1c38bcc61b8d1fccd17bacf7b767a65042e60be928814f59ed989b46db8167e2ba24c75167f601dc1e41bbaa80ad3a8264e2
- SSDEEP
  
  3072:XhFBviclJqJo6uBlKJaT4qJnsjCHE0vewbXGyTNxGwC:X7BPlAy6gKedp6c3C
Score

9^/10

discovery
- Contacts a large (1614531) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

miraimirai_x86corona

behavioral1

© 2018-2024

Terms | Privacy