mirai | 7c6f88a200b04c8b917e06910342235d2b20955cb6003b6efdc0e64855e147a9 | Triage

Sharing

General

Target

0b82fbc7af76cb6bfffc252298f5086c.elf
Size

54KB
Sample

221222-b89ngagh5x
MD5

0b82fbc7af76cb6bfffc252298f5086c
SHA1

6afcde1dee4866b5263cbdb33855df129f42a31f
SHA256

7c6f88a200b04c8b917e06910342235d2b20955cb6003b6efdc0e64855e147a9
SHA512

3175af2b5a4906ca61c666fff9a5b343062115991345147c9da52cc9447a166c0db77d78b5b3be20337008999c28dc1409883406daa2770d2b991b23542482ca
SSDEEP

1536:JeESt/basV2rcZhG6+KN7Tq+lSR9zWOIaEjrqMcs:JeESt/basVTgW7Tq+QRVtXESn

Score

10^/10

mirai discovery linux

Malware Config

Extracted

Family

mirai

C2

dawr1.cyberpros.site

Targets

- Target
  
  0b82fbc7af76cb6bfffc252298f5086c.elf
- Size
  
  54KB
- MD5
  
  0b82fbc7af76cb6bfffc252298f5086c
- SHA1
  
  6afcde1dee4866b5263cbdb33855df129f42a31f
- SHA256
  
  7c6f88a200b04c8b917e06910342235d2b20955cb6003b6efdc0e64855e147a9
- SHA512
  
  3175af2b5a4906ca61c666fff9a5b343062115991345147c9da52cc9447a166c0db77d78b5b3be20337008999c28dc1409883406daa2770d2b991b23542482ca
- SSDEEP
  
  1536:JeESt/basV2rcZhG6+KN7Tq+lSR9zWOIaEjrqMcs:JeESt/basVTgW7Tq+QRVtXESn
Score

9^/10

discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Reads runtime system information
  Reads data from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1