mirai | 2f8c6c36a51d9214c7f1fda8b0f8806c933f35da15c95465b1e13d280a640929 | Triage

Submit
Reports

Overview

overview

Static

static

7

b6d826d11b...6e.elf

debian-9-armhf

Sharing

General

Target

10448ae8b51d72d5b5f3569e19341850.bin
Size

26KB
Sample

230502-bc1exshc29
MD5

494fcc0a2a689fa9892c2cc4eb1c93d3
SHA1

e4997a6cde6d16537e1bd12470ff929087ca58a8
SHA256

2f8c6c36a51d9214c7f1fda8b0f8806c933f35da15c95465b1e13d280a640929
SHA512

4b1749deb2d4ff0f28971f257fac8bf007513533cea945e1f39c6568f5cc78b9bd12767d6f4034c6434d19fc5638cbd05aa0e3aec40b1ae9d7cd1660126e45a3
SSDEEP

768:HS1QvRODXElm18tTbzllz6qHsuoI2Ac/rvkSFvm3l1PmnCXb:HS1QEAZ5zlluqroI29/rvd+3bZb

Score

10^/10

mirai lzrd botnet upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

b6d826d11b3ac60fcf618011c87fccc02b8a7ac3b22a4554c82648130308db6e.elf

Resource

debian9-armhf-en-20211208

mirai lzrd botnet

debian-9-armhf

2 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

- Target
  
  b6d826d11b3ac60fcf618011c87fccc02b8a7ac3b22a4554c82648130308db6e.elf
- Size
  
  26KB
- MD5
  
  10448ae8b51d72d5b5f3569e19341850
- SHA1
  
  d4515ce27145bca39f1cf816c236b4e84b2cd6e7
- SHA256
  
  b6d826d11b3ac60fcf618011c87fccc02b8a7ac3b22a4554c82648130308db6e
- SHA512
  
  a33f141c128092beadc3fd6eb4e7e884848e5651f96a06dfc3f29a0bf379361458571dcb688407722c602afd95c06cc6c9c5a812b6127e2f856a7f54a774ec5f
- SSDEEP
  
  768:JMKyhegCCMqfizjoNpd2vJdX6vwrw9q3UELui:OKy4qfqoeJdXWg5LD
Score

10^/10

mirai lzrd botnet
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Reads runtime system information
  Reads data from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

mirailzrdbotnet

© 2018-2024

Terms | Privacy