General
-
Target
b069841e407cc5714215b0b7c4b2ae0c.elf
-
Size
151KB
-
Sample
230317-jen4nsgh6t
-
MD5
b069841e407cc5714215b0b7c4b2ae0c
-
SHA1
1bfe67df0649ba5561a47650d89c5a6e63c1e8e5
-
SHA256
5469760732519bff25afdcbe4c79eae1c3cc80e8c3575831a6d80af315c86d72
-
SHA512
88391c5215ab255f0641c370a598814ce9520049ed96e7a28ef33795e07aedb703e2480b857f6db84f7c0b7dd435865f7be919a3eb5fab321adef0acef2da235
-
SSDEEP
3072:JW6dm9tS1aRGQdK76t/zCEI5mrThPaLEnvPrNb:c6IG+LC5mrThPaLEnvPrNb
Malware Config
Targets
-
-
Target
b069841e407cc5714215b0b7c4b2ae0c.elf
-
Size
151KB
-
MD5
b069841e407cc5714215b0b7c4b2ae0c
-
SHA1
1bfe67df0649ba5561a47650d89c5a6e63c1e8e5
-
SHA256
5469760732519bff25afdcbe4c79eae1c3cc80e8c3575831a6d80af315c86d72
-
SHA512
88391c5215ab255f0641c370a598814ce9520049ed96e7a28ef33795e07aedb703e2480b857f6db84f7c0b7dd435865f7be919a3eb5fab321adef0acef2da235
-
SSDEEP
3072:JW6dm9tS1aRGQdK76t/zCEI5mrThPaLEnvPrNb:c6IG+LC5mrThPaLEnvPrNb
Score9/10-
Modifies the Watchdog daemon
Malware like Mirai modify the Watchdog to prevent it restarting an infected system.
-
Reads system routing table
Gets active network interfaces from /proc virtual filesystem.
-
Reads system network configuration
Uses contents of /proc filesystem to enumerate network settings.
-