Overview

overview

10

Static

static

7

450a132e80...14.elf

debian-9-mipsel

10

Analysis

  • max time kernel
    150s
  • max time network
    152s
  • platform
    linux_mipsel
  • resource
    debian9-mipsel-en-20211208
  • resource tags

    arch:mipselimage:debian9-mipsel-en-20211208kernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
  • submitted
    21/08/2023, 01:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    450a132e8091f5fc8c040b8822398ec398b110e63512c9f0988b6114b2d65914.elf

  • Size

    24KB

  • MD5

    d3b060e5a7f8e493e569b4b1cfb39ba3

  • SHA1

    cb453e0ee200dcd1c1d2e026005f44a61054544e

  • SHA256

    450a132e8091f5fc8c040b8822398ec398b110e63512c9f0988b6114b2d65914

  • SHA512

    87faaf92e79066cc1dd545d57c572091150db897fbc9ebf723491e76742764220fbc341a27a01fa85de2589d31db179e6723a621a39291a1a52383cdbbbcc63c

  • SSDEEP

    768:c4rQlS07dEv0UXqUhvQE+CXQKMQKCXBpUGfZq8Wvp:BQlS07FUXqIYSXQKquvqv

Score
10/10
mirailzrdbotnet

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Signatures

  • Mirai

    Mirai is a prevalent Linux malware infecting exposed network devices.

    botnetmirai
  • Modifies Watchdog functionality 1 TTPs 2 IoCs

    Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

  • Writes file to system bin folder 1 TTPs 2 IoCs

Processes

  • /tmp/450a132e8091f5fc8c040b8822398ec398b110e63512c9f0988b6114b2d65914.elf
    /tmp/450a132e8091f5fc8c040b8822398ec398b110e63512c9f0988b6114b2d65914.elf
    1⤵
      PID:331

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads