Analysis
-
max time kernel
1s -
max time network
126s -
platform
debian-9_armhf -
resource
debian9-armhf-20221111-en -
resource tags
arch:armhfimage:debian9-armhf-20221111-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem -
submitted
04-05-2023 08:40
General
-
Target
a1844121f014ac424c63c3963c0e36d1.elf
-
Size
33KB
-
MD5
a1844121f014ac424c63c3963c0e36d1
-
SHA1
2c69020557e7d1dbd179efec9cb25a170ec7f692
-
SHA256
30d868ddc96cb2adf863dba459ee8f40c4384d4edbf7ea43000f284f1164b653
-
SHA512
c87503ac8d2305b8a38a7eddb166adf424c6535aeffec2a7b2ac4877d93d9d5360d8df3f202c65a3002a8da08984397e7e5ff4d9088cc91b82f17fb66b4b25ba
-
SSDEEP
768:qu9YDJSsqL8dTvlz+kZaJftXp/KJxrKu+lmLSZMA9q3UELCU:qu9CgsqL8dTlqk41tXp/K/5+sLlL3
Malware Config
Extracted
Family
mirai
Botnet
LZRD
Signatures
-
Reads runtime system information 1 IoCs
Reads data from /proc virtual filesystem.
Processes:
a1844121f014ac424c63c3963c0e36d1.elfdescription ioc process File opened for reading /proc/self/exe a1844121f014ac424c63c3963c0e36d1.elf
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/368-1-0x00008000-0x0002df38-memory.dmp