Overview

overview

10

Static

static

10

997f1eee55...08.elf

debian-9-mips

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    81d430f1806de59708484ebb5e081e2c.bin

  • Size

    27KB

  • Sample

    230306-bwy17shf41

  • MD5

    e214ef49a2e0a74056eb3b56a72a9aca

  • SHA1

    d47bb4f6f15a0ae689ab8a1b034f70010a72ae52

  • SHA256

    1c6c60a3863ec334c98b5d2685c0cd48dff96fdedce6757c575955e1a98e22d5

  • SHA512

    82dcdcd6ae80acd801d4e98ad284d226246fc873d4474709fd732253443a670ca0d1e08da2ef9c61bfde176a7029e24c5d9865fbeb50278879530efc05b83c8b

  • SSDEEP

    384:RqYHeYfOVlkZ/GDYgWo2mPyrqVaGjgSTYNrmfSLP/LBZL2oOGmIcTzIHt9xcig:RRjmV+MXymP2FK+P/LBZ6DHlT2T2

Score
10/10
miraidiscovery

Malware Config

Targets

    • Target

      997f1eee55e95b43cb022695b893370c1160acb427d4a7c5d00f940e8c536b08.elf

    • Size

      66KB

    • MD5

      81d430f1806de59708484ebb5e081e2c

    • SHA1

      c0ae7e24097b0651d33ba236345e0ece104f2111

    • SHA256

      997f1eee55e95b43cb022695b893370c1160acb427d4a7c5d00f940e8c536b08

    • SHA512

      ce9f5f5726b65dc7128f9793af6549baf304a7b12971e108ff717e25c91d5d53b635ef1c80f6d2a936814f1c143cdf9921ae0e8c6ae0b41e765da75ac9c121b3

    • SSDEEP

      1536:u/Ogc2i9L05qjDcf7kXtIgIhG+DYSz1uQKr524/ak:u42i9LOqjDcf7YtIgIiyQr52o3

    Score
    9/10
    discovery

    • Contacts a large (113103) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Modifies the Watchdog daemon

      Malware like Mirai modify the Watchdog to prevent it restarting an infected system.

    • Reads runtime system information

      Reads data from /proc virtual filesystem.

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks