General
-
Target
7fd13c597fecea5894b02f61c5ac0f51.elf
-
Size
228KB
-
Sample
221221-defjmsbe65
-
MD5
7fd13c597fecea5894b02f61c5ac0f51
-
SHA1
7d539eb5e454769153b29e9d10a30a62689dd737
-
SHA256
dac5322114b51084952c8390318585c0515fbfe3d4f3eca7d18d1dab55b908e9
-
SHA512
25ea5e96e2f9abec89d587f202080b16c669e00099a7c67bea084be22ea86ee21f58b8558d01a5e91f5657272670eb63dbc183c9e239832695bd510236cd75e0
-
SSDEEP
6144:1trDYHU7N7aFm68KTZ3tf3OlFLmTiPFLYoYOtY:LrTh7aFmUT9gfLmOPFLYo1Y
Malware Config
Targets
-
-
Target
7fd13c597fecea5894b02f61c5ac0f51.elf
-
Size
228KB
-
MD5
7fd13c597fecea5894b02f61c5ac0f51
-
SHA1
7d539eb5e454769153b29e9d10a30a62689dd737
-
SHA256
dac5322114b51084952c8390318585c0515fbfe3d4f3eca7d18d1dab55b908e9
-
SHA512
25ea5e96e2f9abec89d587f202080b16c669e00099a7c67bea084be22ea86ee21f58b8558d01a5e91f5657272670eb63dbc183c9e239832695bd510236cd75e0
-
SSDEEP
6144:1trDYHU7N7aFm68KTZ3tf3OlFLmTiPFLYoYOtY:LrTh7aFmUT9gfLmOPFLYo1Y
Score9/10-
Modifies the Watchdog daemon
Malware like Mirai modify the Watchdog to prevent it restarting an infected system.
-
Writes file to system bin folder
-
Modifies rc script
Adding/modifying system rc scripts is a common persistence mechanism.
-
Reads runtime system information
Reads data from /proc virtual filesystem.
-