General
-
Target
1b0566b123056e64e38e5392d5c1f0b5.elf
-
Size
388KB
-
Sample
230317-mv4qvafg96
-
MD5
1b0566b123056e64e38e5392d5c1f0b5
-
SHA1
b46e59af3744343ed69c5ca70cee36a21421bc5f
-
SHA256
0ccdc27c29d4088f41878194f626061bacab5337fe2e0e472743ddf0dd8dc5b4
-
SHA512
6c0695530ba1d2336861766969dfef6153bd2c3debfc50299f65458224b37819a7274f49628b5b37f8be194df15c70dbf69641d3dffff44c4d8a810b93ce5097
-
SSDEEP
6144:33aMnaek06/GqwOYBwjoSRPdpM/9H5Evx5mvwwUCJDdNu:31naek06/GOEwjh/+/KbmvwPCJDdNu
Malware Config
Targets
-
-
Target
1b0566b123056e64e38e5392d5c1f0b5.elf
-
Size
388KB
-
MD5
1b0566b123056e64e38e5392d5c1f0b5
-
SHA1
b46e59af3744343ed69c5ca70cee36a21421bc5f
-
SHA256
0ccdc27c29d4088f41878194f626061bacab5337fe2e0e472743ddf0dd8dc5b4
-
SHA512
6c0695530ba1d2336861766969dfef6153bd2c3debfc50299f65458224b37819a7274f49628b5b37f8be194df15c70dbf69641d3dffff44c4d8a810b93ce5097
-
SSDEEP
6144:33aMnaek06/GqwOYBwjoSRPdpM/9H5Evx5mvwwUCJDdNu:31naek06/GOEwjh/+/KbmvwPCJDdNu
Score9/10-
Modifies the Watchdog daemon
Malware like Mirai modify the Watchdog to prevent it restarting an infected system.
-
Reads system routing table
Gets active network interfaces from /proc virtual filesystem.
-
Reads system network configuration
Uses contents of /proc filesystem to enumerate network settings.
-