mirai | 3890b9443b65ad7eddace56a6bc10bea78ae504182887792d388da9d73c85378 | Triage

Sharing

General

Target

36710x000080000x00026460m.dmp
Size

76KB
Sample

230704-pjhqcaec7w
MD5

d72d9a44e0277aad814859109d888571
SHA1

3038cd8b34fb4af45f97a2fc985186c9123b7d2e
SHA256

3890b9443b65ad7eddace56a6bc10bea78ae504182887792d388da9d73c85378
SHA512

7525abf1f51c2deebbe00e743757f5aeadd762a1f7522f63da45c713b927e1ea9c10f5690468bd20a4a565fdd14b6f9eb45ed4dd6904974e9245d4937a544e8f
SSDEEP

1536:O0n09sBw8wu66UyKe8RK1IPL7vrQ/yRSxscBqlIull42piLGIvdWKE0:K8wxuQyBKaeWyRSxscBqPmGIvdWD0

Score

10^/10

mirai lzrd

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

- Target
  
  36710x000080000x00026460m.dmp
- Size
  
  76KB
- MD5
  
  d72d9a44e0277aad814859109d888571
- SHA1
  
  3038cd8b34fb4af45f97a2fc985186c9123b7d2e
- SHA256
  
  3890b9443b65ad7eddace56a6bc10bea78ae504182887792d388da9d73c85378
- SHA512
  
  7525abf1f51c2deebbe00e743757f5aeadd762a1f7522f63da45c713b927e1ea9c10f5690468bd20a4a565fdd14b6f9eb45ed4dd6904974e9245d4937a544e8f
- SSDEEP
  
  1536:O0n09sBw8wu66UyKe8RK1IPL7vrQ/yRSxscBqlIull42piLGIvdWKE0:K8wxuQyBKaeWyRSxscBqPmGIvdWD0
Score

7^/10
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Writes file to system bin folder
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hijack Execution Flow

Privilege Escalation

Hijack Execution Flow

Defense Evasion

Hijack Execution Flow

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1