mirai | 55a12615f9a3623560f0487c9edf30fee3ec6e7b8bb289745b8534f0512afc55 | Triage

Submit
Reports

Overview

overview

Static

static

7

dd0248fcbf...c6.elf

debian-9-armhf

Sharing

General

Target

dd0248fcbf048cd8d9cc611c72d930c6.elf
Size

26KB
Sample

230426-kwky1sac2s
MD5

dd0248fcbf048cd8d9cc611c72d930c6
SHA1

bd7a8137b1e9742fecf0b6e40415f99bc75ef46e
SHA256

55a12615f9a3623560f0487c9edf30fee3ec6e7b8bb289745b8534f0512afc55
SHA512

32d9a144cda0b4749ffbccadaf7ce2921f0481141017f1d4d4b3fb442572eb8a3c81705228250cc83046b3d6501afde7e9b4748134d57cc1d4adde95bab54672
SSDEEP

768:JMKyhegCCMqfizjoNpd2vJdX6vwr99q3UELui:OKy4qfqoeJdXWgQLj

Score

10^/10

mirai lzrd botnet upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

dd0248fcbf048cd8d9cc611c72d930c6.elf

Resource

debian9-armhf-en-20211208

mirai lzrd botnet

debian-9-armhf

2 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

- Target
  
  dd0248fcbf048cd8d9cc611c72d930c6.elf
- Size
  
  26KB
- MD5
  
  dd0248fcbf048cd8d9cc611c72d930c6
- SHA1
  
  bd7a8137b1e9742fecf0b6e40415f99bc75ef46e
- SHA256
  
  55a12615f9a3623560f0487c9edf30fee3ec6e7b8bb289745b8534f0512afc55
- SHA512
  
  32d9a144cda0b4749ffbccadaf7ce2921f0481141017f1d4d4b3fb442572eb8a3c81705228250cc83046b3d6501afde7e9b4748134d57cc1d4adde95bab54672
- SSDEEP
  
  768:JMKyhegCCMqfizjoNpd2vJdX6vwr99q3UELui:OKy4qfqoeJdXWgQLj
Score

10^/10

mirai lzrd botnet
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Reads runtime system information
  Reads data from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

mirailzrdbotnet

© 2018-2024

Terms | Privacy