General
-
Target
SecuriteInfo.com.Linux.Mirai.3982.8986.20434.elf
-
Size
23KB
-
Sample
230317-p2cbaagc47
-
MD5
9ce3cedc4922b0894529d49caceb5401
-
SHA1
b4c93ca4064bb0aff367db6970c2df8f59e4ec3a
-
SHA256
847ebd6a624881bb75702b1ef07968a203c8250fbaaab5004b4ce035e4dff9b1
-
SHA512
bce688f894380dbb31cf20229e6f1016c06591df0d1a8060d1b12864fce2999e96fa786dbd6168aef21c5a3760a27b5bad6500bca9b14ad7a38afc7d1f5a7e25
-
SSDEEP
384:p3WEBXfrIOPMQXWFgjmIzbEx81mVFkXXXYR+Fdh7hD1sZr/OEMcZJgGlzDpH7uNh:Rx88MD6jXoxcmVFknoEdRhDgrMKJgGlG
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Linux.Mirai.3982.8986.20434.elf
Resource
debian9-mipsbe-en-20211208
Malware Config
Targets
-
-
Target
SecuriteInfo.com.Linux.Mirai.3982.8986.20434.elf
-
Size
23KB
-
MD5
9ce3cedc4922b0894529d49caceb5401
-
SHA1
b4c93ca4064bb0aff367db6970c2df8f59e4ec3a
-
SHA256
847ebd6a624881bb75702b1ef07968a203c8250fbaaab5004b4ce035e4dff9b1
-
SHA512
bce688f894380dbb31cf20229e6f1016c06591df0d1a8060d1b12864fce2999e96fa786dbd6168aef21c5a3760a27b5bad6500bca9b14ad7a38afc7d1f5a7e25
-
SSDEEP
384:p3WEBXfrIOPMQXWFgjmIzbEx81mVFkXXXYR+Fdh7hD1sZr/OEMcZJgGlzDpH7uNh:Rx88MD6jXoxcmVFknoEdRhDgrMKJgGlG
Score9/10-
Modifies the Watchdog daemon
Malware like Mirai modify the Watchdog to prevent it restarting an infected system.
-
Writes file to system bin folder
-
Reads runtime system information
Reads data from /proc virtual filesystem.
-