Overview

overview

10

Static

static

7

ec79ed8d5a...f8.elf

debian-9-mipsel

10

Analysis

  • max time kernel
    0s
  • max time network
    125s
  • platform
    debian-9_mipsel
  • resource
    debian9-mipsel-20221111-en
  • resource tags

    arch:mipselimage:debian9-mipsel-20221111-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
  • submitted
    14-05-2023 12:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ec79ed8d5a322267cce6f1b9d8cb8bf8.elf

  • Size

    46KB

  • MD5

    ec79ed8d5a322267cce6f1b9d8cb8bf8

  • SHA1

    18b2b3c1ac94f8c93341a554fce8dd3752489440

  • SHA256

    bfee34cf8d59f0fc258507d26f53b560fa5388f604dd56ff98bbad888857cef8

  • SHA512

    7438f48c4a5b5813f636137287133b40d4f2818bfa5ff31baf12a9526fe2fa6b9def507d850474f0e6ad3af0069eb217bc24bac0eddc7f47ff3512b24ea0336f

  • SSDEEP

    768:lAXsyb2m5IWs6QPIMuYrGmf0jXMOrCJREvJZoFVk06b/xnZF8W2DFKdPRcMH3NNk:TY3IWs6Qwn/9bMOgGZoFVkvDxZFJPyMI

Score
10/10
miraibotnet

Malware Config

Signatures

  • Mirai

    Mirai is a prevalent Linux malware infecting exposed network devices.

    botnetmirai
  • Deletes itself 1 IoCs
  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/ec79ed8d5a322267cce6f1b9d8cb8bf8.elf
    /tmp/ec79ed8d5a322267cce6f1b9d8cb8bf8.elf
    1⤵
    • Deletes itself
    • Reads runtime system information
    PID:326

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/326-1-0x00400000-0x0046986c-memory.dmp
    Download