mirai | 0b4ef31d1510e15061c56a19e9ddcf0ed7bc2fa4a797c8e334cf8bbc49eb6e5b | Triage

Submit
Reports

Overview

overview

Static

static

7

c562429aec...f2.elf

debian-9-armhf

Sharing

General

Target

c562429aec46f945ac9dbe7cdcf40ff2.elf
Size

32KB
Sample

230426-hs7x9sff75
MD5

c562429aec46f945ac9dbe7cdcf40ff2
SHA1

d7928a478e0044343b52c51590dd1de3602992b7
SHA256

0b4ef31d1510e15061c56a19e9ddcf0ed7bc2fa4a797c8e334cf8bbc49eb6e5b
SHA512

05b613127cf444c46123472a7cee91810f715da0c37b5de01e65c8e84ecd685fa530eabba1c53d0f15cb9cab6eb7e5301087c404873b345c453599d8d547158a
SSDEEP

768:3lFtCA/Q0QbiypDWs7X6dp8PYTeDQYEvU4a2vY9q3UELS8:U0nyx3X6dp8w6fn2vBLr

Score

10^/10

mirai botnet upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

c562429aec46f945ac9dbe7cdcf40ff2.elf

Resource

debian9-armhf-en-20211208

debian-9-armhf

2 signatures

150 seconds

Malware Config

Extracted

Family

mirai

C2

bn.vboot.pw

Targets

- Target
  
  c562429aec46f945ac9dbe7cdcf40ff2.elf
- Size
  
  32KB
- MD5
  
  c562429aec46f945ac9dbe7cdcf40ff2
- SHA1
  
  d7928a478e0044343b52c51590dd1de3602992b7
- SHA256
  
  0b4ef31d1510e15061c56a19e9ddcf0ed7bc2fa4a797c8e334cf8bbc49eb6e5b
- SHA512
  
  05b613127cf444c46123472a7cee91810f715da0c37b5de01e65c8e84ecd685fa530eabba1c53d0f15cb9cab6eb7e5301087c404873b345c453599d8d547158a
- SSDEEP
  
  768:3lFtCA/Q0QbiypDWs7X6dp8PYTeDQYEvU4a2vY9q3UELS8:U0nyx3X6dp8w6fn2vBLr
Score

10^/10

mirai botnet
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Reads runtime system information
  Reads data from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy