General
-
Target
boatnet.arm7.elf
-
Size
45KB
-
Sample
230501-nz5pdafd47
-
MD5
91e737517e8235971e8c985971d57d0e
-
SHA1
9d2c16ac20ea674e0d429d60551e113a7a832335
-
SHA256
0a9349ddbaab4ff17a0a20fcc82ddcca680b866706a7b4650c69f1112bde17dd
-
SHA512
291806d8549e3b7a23b26708f748089b0280ef637c3451b6cbf2380686ad3306015bd311b585343bef74f2bbaeef86017bee8a5cc7f0e1f5cd72338b56ca1e23
-
SSDEEP
768:D/TYCoIxdEk+AxoTZAZHFeq8b3Cj9q3UELbUXfi6nVMQHI4vcGpvt:DECFd+A6YHAx9LRQZt
Malware Config
Extracted
mirai
LZRD
Targets
-
-
Target
boatnet.arm7.elf
-
Size
45KB
-
MD5
91e737517e8235971e8c985971d57d0e
-
SHA1
9d2c16ac20ea674e0d429d60551e113a7a832335
-
SHA256
0a9349ddbaab4ff17a0a20fcc82ddcca680b866706a7b4650c69f1112bde17dd
-
SHA512
291806d8549e3b7a23b26708f748089b0280ef637c3451b6cbf2380686ad3306015bd311b585343bef74f2bbaeef86017bee8a5cc7f0e1f5cd72338b56ca1e23
-
SSDEEP
768:D/TYCoIxdEk+AxoTZAZHFeq8b3Cj9q3UELbUXfi6nVMQHI4vcGpvt:DECFd+A6YHAx9LRQZt
-
Modifies the Watchdog daemon
Malware like Mirai modify the Watchdog to prevent it restarting an infected system.
-
Writes file to system bin folder
-
Reads runtime system information
Reads data from /proc virtual filesystem.
-