General
-
Target
6e18bda720414d9dd96d8070b69660a0.elf
-
Size
151KB
-
Sample
221104-yvy15saeh4
-
MD5
6e18bda720414d9dd96d8070b69660a0
-
SHA1
01af8d547f6f5c141296be9111e951e69ad850bc
-
SHA256
60db80b8eda9b4a321f7be831842ee9027a42560933145b3c87e5d5573bbd740
-
SHA512
4b482840a625194aecf19bfb61df7557e6c94f60a28eb9aee86646f02551073a8a79411b64b260f6fe777dc0643cb8a86615320c671526248e4ba86e9972e20d
-
SSDEEP
3072:JW6dK9tS1aRGQdK76t/zL9I5mrThPaLEnvPrNb:c6UG+LLCmrThPaLEnvPrNb
Malware Config
Targets
-
-
Target
6e18bda720414d9dd96d8070b69660a0.elf
-
Size
151KB
-
MD5
6e18bda720414d9dd96d8070b69660a0
-
SHA1
01af8d547f6f5c141296be9111e951e69ad850bc
-
SHA256
60db80b8eda9b4a321f7be831842ee9027a42560933145b3c87e5d5573bbd740
-
SHA512
4b482840a625194aecf19bfb61df7557e6c94f60a28eb9aee86646f02551073a8a79411b64b260f6fe777dc0643cb8a86615320c671526248e4ba86e9972e20d
-
SSDEEP
3072:JW6dK9tS1aRGQdK76t/zL9I5mrThPaLEnvPrNb:c6UG+LLCmrThPaLEnvPrNb
Score9/10-
Modifies the Watchdog daemon
Malware like Mirai modify the Watchdog to prevent it restarting an infected system.
-
Reads system routing table
Gets active network interfaces from /proc virtual filesystem.
-
Reads system network configuration
Uses contents of /proc filesystem to enumerate network settings.
-