mirai | cb8ad4b2eb9202b235f46a82dcda8f06e4f97d5a5e43c8e533b2883013faaeb7 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

398f91c718...2a.elf

debian-9-mips

9

Sharing

General

Target

e34f34b9fe88e8cb547b4f3bc8117300.bin
Size

19KB
Sample

230605-p5pqsahc4w
MD5

77bea4c6141e5e8a8cb4b148d3b06d2e
SHA1

f912433eba57dc4e74adb5299645a29e12ce9118
SHA256

cb8ad4b2eb9202b235f46a82dcda8f06e4f97d5a5e43c8e533b2883013faaeb7
SHA512

46219fbc7ddded341c123ef6d9352ffaf669c05e5c219d423262e6acac86cb0070401c240abb09b10919790d2e510ecc39dde05238b0bc3038afd82acec2b20e
SSDEEP

384:X9hxpGpbCCGtEaLXKR338h5V2ShzwE4efZ9IfbxhF7GTsUpuw76JD/fmGnY0+MXp:Xap3CtXKR338J2iZ4efZ9Ybxb7GwU0wa

Score

10^/10

mirai discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

398f91c71817f61f56bc64836b5eba5d445bd4e89bad688af88338a1a5923d2a.elf

Resource

debian9-mipsbe-en-20211208

debian-9-mips

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  398f91c71817f61f56bc64836b5eba5d445bd4e89bad688af88338a1a5923d2a.elf
- Size
  
  47KB
- MD5
  
  e34f34b9fe88e8cb547b4f3bc8117300
- SHA1
  
  15a2c9e7d90739fd2753d8779f20993331fcbbf5
- SHA256
  
  398f91c71817f61f56bc64836b5eba5d445bd4e89bad688af88338a1a5923d2a
- SHA512
  
  0591b258ff7871114bd5726fedfa29aaf0e3c2cd6b9f2105ec1000a7459b3f268d04f425aecad6fafe2fb17f574cc5eebffd6b0d7971f3411d82f73083075c30
- SSDEEP
  
  768:kd1DanPJttY9mMw3S71I/ZhXrQ6UkIZbrh6T2HFAjboHo2Ji025B3B3q30W3f3sh:6DqvO9mMUSxOh7hwlP0e0BmMlqu/64XJ
Score

9^/10

discovery
- Contacts a large (300374) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Changes its process name
- Deletes itself
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy