mirai | 190fdbfcfad294880a48139bf003eea0841a165ceb80045201ae97a773c6d6d2 | Triage

Submit
Reports

Overview

overview

Static

static

7

190fdbfcfa...JC.elf

debian-9-armhf

Sharing

Copy URL Twitter E-mail

General

Target

190fdbfcfad294880a48139bf003eea0841a165ceb80045201ae97a773c6d6d2_JC.elf
Size

41KB
Sample

231004-v428dafc86
MD5

518d3882eba7ff2b72f574984ced1467
SHA1

65c7895ed0359d6816ebf148b4d8b9d0d15d4a57
SHA256

190fdbfcfad294880a48139bf003eea0841a165ceb80045201ae97a773c6d6d2
SHA512

2d5533756b65e043fac8e3b12fd0c9bf63ffcf30eba53ba6c113bb4cd538f3216f250b7bb0e9290ba59fe4f8984fec539bc8be56fba71c05050095c52664d38b
SSDEEP

768:9C3sdOmwXCUP0qgEpELCDN4Iq3UIfDWj2C9Udq2I+uxMUabW:A80Oqt1DefSqCezIVMvW

Score

10^/10

mirai botnet upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

190fdbfcfad294880a48139bf003eea0841a165ceb80045201ae97a773c6d6d2_JC.elf

Resource

debian9-armhf-20230831-en

debian-9-armhf

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  190fdbfcfad294880a48139bf003eea0841a165ceb80045201ae97a773c6d6d2_JC.elf
- Size
  
  41KB
- MD5
  
  518d3882eba7ff2b72f574984ced1467
- SHA1
  
  65c7895ed0359d6816ebf148b4d8b9d0d15d4a57
- SHA256
  
  190fdbfcfad294880a48139bf003eea0841a165ceb80045201ae97a773c6d6d2
- SHA512
  
  2d5533756b65e043fac8e3b12fd0c9bf63ffcf30eba53ba6c113bb4cd538f3216f250b7bb0e9290ba59fe4f8984fec539bc8be56fba71c05050095c52664d38b
- SSDEEP
  
  768:9C3sdOmwXCUP0qgEpELCDN4Iq3UIfDWj2C9Udq2I+uxMUabW:A80Oqt1DefSqCezIVMvW
Score

10^/10

mirai botnet
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Changes its process name
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
- Enumerates active TCP sockets
  Gets active TCP sockets from /proc virtual filesystem.
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy