Overview

overview

10

Static

static

7

sora.x86.elf

ubuntu-18.04-amd64

10

Analysis

  • max time kernel
    3s
  • max time network
    134s
  • platform
    ubuntu-18.04_amd64
  • resource
    ubuntu1804-amd64-20221111-en
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-20221111-enkernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    26-04-2023 08:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sora.x86.elf

  • Size

    27KB

  • MD5

    88d916887692e018e30498f45e16d71f

  • SHA1

    dff168b61684d2d2295959779b7f9937f00e6ade

  • SHA256

    06a9af7afd10d43b7e51f8d5872cd03fe7e64c5d6d709dc446cdb6eec19312d1

  • SHA512

    709c3177914edbb5748d53cd706d214e30bbe5990667d2c931001d3348430dc0e68f56dbab1f646bb7365478568069a7582f8a2faad797f0eb0c1fc2ddeeafc1

  • SSDEEP

    384:Mg1DMwk8JPyGnT8WyopNEutTneSe3oECHjYlQ2NnE4+0o8tm3HWBKENAZHkzg60e:RMwxdyoEUnDz+Y8tqHWXmdV0Nf

Score
10/10
miraisorabotnet

Malware Config

Extracted

Family

mirai

Botnet

SORA

Signatures

  • Mirai

    Mirai is a prevalent Linux malware infecting exposed network devices.

    botnetmirai

Processes

  • /tmp/sora.x86.elf
    /tmp/sora.x86.elf
    1⤵
      PID:622

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/622-1-0x0000000008048000-0x0000000008057740-memory.dmp
      Download