Overview

overview

10

Static

static

7

9920c441d0...76.elf

ubuntu-18.04-amd64

10

Analysis

  • max time kernel
    3s
  • max time network
    134s
  • platform
    ubuntu-18.04_amd64
  • resource
    ubuntu1804-amd64-20221125-en
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-20221125-enkernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    03-06-2023 08:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9920c441d0e451d7e412b980aa58c876.elf

  • Size

    35KB

  • MD5

    9920c441d0e451d7e412b980aa58c876

  • SHA1

    5a1406c8e884f86928c6409652d57c563faeb663

  • SHA256

    6c735bbe1479b81f8062f39f9442aa60a4b6a261f628191569acf08d7dfd6425

  • SHA512

    fad48c5d8b3b6e1b58483a6cf26699c6629f01a05da1fc37c8d7eb73ed2962dc6d8444db67942b036884068fbe1ce9af24bf205c31860532c23d80b0cca17154

  • SSDEEP

    768:uuQIO4CmPSVmCkDYozy2rAtZMJrIchdjln6ycVinbcuyD7UV/2g:vq4CoSjKPBsZ4V3jln6yMinouy8og

Score
10/10
miraibotnet

Malware Config

Signatures

  • Mirai

    Mirai is a prevalent Linux malware infecting exposed network devices.

    botnetmirai
  • Deletes itself 1 IoCs
  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/9920c441d0e451d7e412b980aa58c876.elf
    /tmp/9920c441d0e451d7e412b980aa58c876.elf
    1⤵
    • Deletes itself
    • Reads runtime system information
    PID:594

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/594-1-0x0000000008048000-0x000000000805da60-memory.dmp
    Download