mirai | 685a6fbeb5fb12719e1efb48f2c5fc6a4f86a4b6950fa1bf214140b409b36422 | Triage

Sharing

General

Target

skidv2.x86_64-20220924-1421.elf
Size

66KB
Sample

220924-rnzwjacfhq
MD5

fc6d0f18c2b86e9b787b1a856c2e4d5f
SHA1

bb574e43a9784e5eff1771b4745094338feeb8ed
SHA256

685a6fbeb5fb12719e1efb48f2c5fc6a4f86a4b6950fa1bf214140b409b36422
SHA512

ef508290b3e7bbd0de5fce8f4b714308bdb2a3d28fa75d6fdd9038c8ee21a5b25db18d682e3596e34d0e6d546ab1fb863cca357651a06f17ee93af9b6ab53298
SSDEEP

1536:pUluhdikJUVWMxMa0cFdy3cwpwVp5bqlG3I9lau6YLYbqFUm/VLt:iuhdiaUMSMa0Kact5WlG3Iz6YLYDm/Vh

Score

10^/10

mirai linux

Malware Config

Targets

- Target
  
  skidv2.x86_64-20220924-1421.elf
- Size
  
  66KB
- MD5
  
  fc6d0f18c2b86e9b787b1a856c2e4d5f
- SHA1
  
  bb574e43a9784e5eff1771b4745094338feeb8ed
- SHA256
  
  685a6fbeb5fb12719e1efb48f2c5fc6a4f86a4b6950fa1bf214140b409b36422
- SHA512
  
  ef508290b3e7bbd0de5fce8f4b714308bdb2a3d28fa75d6fdd9038c8ee21a5b25db18d682e3596e34d0e6d546ab1fb863cca357651a06f17ee93af9b6ab53298
- SSDEEP
  
  1536:pUluhdikJUVWMxMa0cFdy3cwpwVp5bqlG3I9lau6YLYbqFUm/VLt:iuhdiaUMSMa0Kact5WlG3Iz6YLYDm/Vh
Score

7^/10
- Enumerates active TCP sockets
  Gets active TCP sockets from /proc virtual filesystem.
- Reads system network configuration
  Uses contents of /proc filesystem to enumerate network settings.
- Reads runtime system information
  Reads data from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1