mirai | befca934b080e6c0ad958e2590cb540389525ca94189bdaab6aa75dbb0491de1 | Triage

Submit
Reports

Overview

overview

Static

static

mips

debian-9-mips

9

Sharing

General

Target

mips
Size

186KB
Sample

230718-vc4xwsdb9z
MD5

4bbc57bcb95f8f4109a92932d052d270
SHA1

bb5ee2008bb61c142f940c646ca482d8aa2c8646
SHA256

befca934b080e6c0ad958e2590cb540389525ca94189bdaab6aa75dbb0491de1
SHA512

19857321d219512ecfc6ef5098e0d0444fe2185d6abc5256ea72f444e5afc0f4a77b7f6c3a3e052733a8938fe6b72f2fc53f41335dbd59a9361be347904ef203
SSDEEP

3072:prDNZXSACW9ftsF/+y1ib9k4Obrx17ZpbyHRtaSab2jHpmC:prDvCDZ1ib9k4U7zGHR1ab2jJmC

Score

10^/10

mirai discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

mips

Resource

debian9-mipsbe-20221125-en

debian-9-mips

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  mips
- Size
  
  186KB
- MD5
  
  4bbc57bcb95f8f4109a92932d052d270
- SHA1
  
  bb5ee2008bb61c142f940c646ca482d8aa2c8646
- SHA256
  
  befca934b080e6c0ad958e2590cb540389525ca94189bdaab6aa75dbb0491de1
- SHA512
  
  19857321d219512ecfc6ef5098e0d0444fe2185d6abc5256ea72f444e5afc0f4a77b7f6c3a3e052733a8938fe6b72f2fc53f41335dbd59a9361be347904ef203
- SSDEEP
  
  3072:prDNZXSACW9ftsF/+y1ib9k4Obrx17ZpbyHRtaSab2jHpmC:prDvCDZ1ib9k4U7zGHR1ab2jJmC
Score

9^/10

discovery
- Contacts a large (93923) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Changes its process name
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy