mirai | 5048566d8565ae9e700311dbba558f279107c320704e5a930deb914d0230101f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

67ff291f081b7778e7bf9cf09.elf
Size

64KB
Sample

230708-t4x3zsff34
MD5

67ff291f081b7778e7bf9cf095679eba
SHA1

5056b397360007a886d6a56fad5119ffc87bab06
SHA256

5048566d8565ae9e700311dbba558f279107c320704e5a930deb914d0230101f
SHA512

6da3021f05005c6d958638bd0a6ca976b540f157653a93708f925203991e693f881f738bea9fe556c9525d7133ec2233977c29cb26332a13a0894005d882bad9
SSDEEP

1536:T562r5PIV8g4IVSFRhkiyzxyKu9+EYDlhW7EvOua:tvFzgLVSFDk5zxAIl0wvT

Score

10^/10

mirai linux

Malware Config

Extracted

Family

mirai

C2

the.timestop.online

Targets

- Target
  
  67ff291f081b7778e7bf9cf09.elf
- Size
  
  64KB
- MD5
  
  67ff291f081b7778e7bf9cf095679eba
- SHA1
  
  5056b397360007a886d6a56fad5119ffc87bab06
- SHA256
  
  5048566d8565ae9e700311dbba558f279107c320704e5a930deb914d0230101f
- SHA512
  
  6da3021f05005c6d958638bd0a6ca976b540f157653a93708f925203991e693f881f738bea9fe556c9525d7133ec2233977c29cb26332a13a0894005d882bad9
- SSDEEP
  
  1536:T562r5PIV8g4IVSFRhkiyzxyKu9+EYDlhW7EvOua:tvFzgLVSFDk5zxAIl0wvT
Score

7^/10
- Changes its process name
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1