General
-
Target
3f1d4404666b8c00967537e2944521f9.elf
-
Size
113KB
-
Sample
221130-af2xgsed31
-
MD5
3f1d4404666b8c00967537e2944521f9
-
SHA1
5edc488c83feeda42f543df675789653ea916013
-
SHA256
1ce41c78a51ff7f9f2db2bfcd24cb517754b43d1e0f779426ce712b99ddd2820
-
SHA512
50740d4e284daab5a35f6fe42c9b193d375c55a6892f7ffcc479d7992a2deb81037c7a94c9c3e717a670357671ada91f25d61c88a066afb83ece34b557db1b69
-
SSDEEP
3072:kiry859a2A/JfFwHYqbgFFo8+HeJH+TRCm7FnVqfJXFWbNb:T9a2ijqkrFesm7FnVqfJXFWbNb
Behavioral task
behavioral1
Sample
3f1d4404666b8c00967537e2944521f9.elf
Resource
ubuntu1804-amd64-20221111-en
Malware Config
Targets
-
-
Target
3f1d4404666b8c00967537e2944521f9.elf
-
Size
113KB
-
MD5
3f1d4404666b8c00967537e2944521f9
-
SHA1
5edc488c83feeda42f543df675789653ea916013
-
SHA256
1ce41c78a51ff7f9f2db2bfcd24cb517754b43d1e0f779426ce712b99ddd2820
-
SHA512
50740d4e284daab5a35f6fe42c9b193d375c55a6892f7ffcc479d7992a2deb81037c7a94c9c3e717a670357671ada91f25d61c88a066afb83ece34b557db1b69
-
SSDEEP
3072:kiry859a2A/JfFwHYqbgFFo8+HeJH+TRCm7FnVqfJXFWbNb:T9a2ijqkrFesm7FnVqfJXFWbNb
Score9/10-
Modifies the Watchdog daemon
Malware like Mirai modify the Watchdog to prevent it restarting an infected system.
-
Reads system routing table
Gets active network interfaces from /proc virtual filesystem.
-
Reads system network configuration
Uses contents of /proc filesystem to enumerate network settings.
-