Analysis
-
max time kernel
153s -
max time network
151s -
platform
linux_amd64 -
resource
ubuntu1804-amd64-en-20211208 -
resource tags
arch:amd64arch:i386image:ubuntu1804-amd64-en-20211208kernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system -
submitted
04-05-2023 01:03
General
-
Target
27046c7ca44bdca40f47ced937ecfbac8b3847b6c070f40eaaf3d927fe487b7f.elf
-
Size
21KB
-
MD5
0e52ae75206988db4623d7e085189dd4
-
SHA1
89edeffff21ad08b5f0087019298ee9cd552a08a
-
SHA256
27046c7ca44bdca40f47ced937ecfbac8b3847b6c070f40eaaf3d927fe487b7f
-
SHA512
0fdd3d8829377382316e0c8fae4bf6a40984cc21423e594a5378f3ff4877bf4aeb2fc9008b1a33c023f14562c57c16dad338d7a582782f359c8939b9e678a77e
-
SSDEEP
384:M9iuOsQ/Tmf2PYFcFx49QG0yk1QC9vQSysRbNrYiv70WhOM77Xi+v1R8y:huZQ7m+PYFI0avPyoNrYivoWz77N8y
Malware Config
Extracted
Family
mirai
Botnet
LZRD
Signatures
-
Reads runtime system information 14 IoCs
Reads data from /proc virtual filesystem.
Processes:
description ioc File opened for reading /proc/460/cmdline File opened for reading /proc/606/cmdline File opened for reading /proc/678/cmdline File opened for reading /proc/424/cmdline File opened for reading /proc/702/cmdline File opened for reading /proc/592/cmdline File opened for reading /proc/422/cmdline File opened for reading /proc/565/cmdline File opened for reading /proc/593/cmdline File opened for reading /proc/594/cmdline File opened for reading /proc/595/cmdline File opened for reading /proc/600/cmdline File opened for reading /proc/682/cmdline File opened for reading /proc/409/cmdline
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/597-1-0x0000000008048000-0x0000000008056920-memory.dmp