General

  • Target

    23786a766685b6c69598b8a392a2b82a.elf

  • Size

    50KB

  • Sample

    221203-259geahf7x

  • MD5

    23786a766685b6c69598b8a392a2b82a

  • SHA1

    3475c3bacaf7a11e2431fb400cb5f32c9985cfb5

  • SHA256

    e781f392879dfac2d5a0741b2cee2229959bb496d7033f2d2bab4e35e5e58389

  • SHA512

    23ef4dea60630e05b8d3e2d50ef15f2d2e195ff9c9b03fe505b9127d33a44b6a3f358ef1d5a8e91383cbede38eddac3e38119c663e1f7d6daacffb3779ebd8d2

  • SSDEEP

    768:ytYRSjaQ9DaZ/oJlExakbMqu8iMDkvKy+hllqTm/4RsvKQLDJsgMjz:WYRSjaCu1wlP0Dly+hHqq/4G3LNsgMv

Malware Config

Extracted

Family

mirai

Botnet

CONDI

C2

cnc.ayx.ink

Targets

    • Target

      23786a766685b6c69598b8a392a2b82a.elf

    • Size

      50KB

    • MD5

      23786a766685b6c69598b8a392a2b82a

    • SHA1

      3475c3bacaf7a11e2431fb400cb5f32c9985cfb5

    • SHA256

      e781f392879dfac2d5a0741b2cee2229959bb496d7033f2d2bab4e35e5e58389

    • SHA512

      23ef4dea60630e05b8d3e2d50ef15f2d2e195ff9c9b03fe505b9127d33a44b6a3f358ef1d5a8e91383cbede38eddac3e38119c663e1f7d6daacffb3779ebd8d2

    • SSDEEP

      768:ytYRSjaQ9DaZ/oJlExakbMqu8iMDkvKy+hllqTm/4RsvKQLDJsgMjz:WYRSjaCu1wlP0Dly+hHqq/4G3LNsgMv

    Score
    9/10
    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

MITRE ATT&CK Matrix ATT&CK v6

Discovery

Network Service Scanning

1
T1046

Tasks