General
-
Target
f292ba000c822708f5132199eeb2adf7.elf
-
Size
151KB
-
Sample
230317-l3yzwsff46
-
MD5
f292ba000c822708f5132199eeb2adf7
-
SHA1
ffa914c6b252318ccf2031e78bf365ba558a1050
-
SHA256
9a7c2de5a2f36785e347b6e121516c6ec810c8789bc187601c7bbc75282eb1d5
-
SHA512
3d613766cb7363cc59e236133d5de80806ccf8fc009496013b18aafa23b3103f058b9485b38665364c9853015e85f39f733ea9b3a8c6c705089bd23e80aad141
-
SSDEEP
3072:dgZc9h1jlnLA2PiXYeyCcgVNMVGuo9mrThPaLEnvPrNb:dd7lnLA2PiIeyZgVWDo9mrThPaLEnvP5
Behavioral task
behavioral1
Sample
f292ba000c822708f5132199eeb2adf7.elf
Resource
debian9-mipsel-20221111-en
Malware Config
Targets
-
-
Target
f292ba000c822708f5132199eeb2adf7.elf
-
Size
151KB
-
MD5
f292ba000c822708f5132199eeb2adf7
-
SHA1
ffa914c6b252318ccf2031e78bf365ba558a1050
-
SHA256
9a7c2de5a2f36785e347b6e121516c6ec810c8789bc187601c7bbc75282eb1d5
-
SHA512
3d613766cb7363cc59e236133d5de80806ccf8fc009496013b18aafa23b3103f058b9485b38665364c9853015e85f39f733ea9b3a8c6c705089bd23e80aad141
-
SSDEEP
3072:dgZc9h1jlnLA2PiXYeyCcgVNMVGuo9mrThPaLEnvPrNb:dd7lnLA2PiIeyZgVWDo9mrThPaLEnvP5
Score9/10-
Modifies the Watchdog daemon
Malware like Mirai modify the Watchdog to prevent it restarting an infected system.
-
Reads system routing table
Gets active network interfaces from /proc virtual filesystem.
-
Reads system network configuration
Uses contents of /proc filesystem to enumerate network settings.
-