mirai | 3e048e241f9c4a91cbc6efa700bf6839ccc3f8818ae9bbdcf83b4b7afe1f7343 | Triage

Analysis

max time kernel
2s
max time network
126s
platform
linux_armhf
resource
debian9-armhf-en-20211208
resource tags

arch:armhfimage:debian9-armhf-en-20211208kernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
submitted
24/10/2023, 04:50

Sharing

Report Analysis Logs

General

Target

miori.arm7.elf
Size

42KB
MD5

c8de28ee07aaf4aa577468b8e7f25014
SHA1

8839360d99bc4d87624315ec13d21ed59ba8a185
SHA256

3e048e241f9c4a91cbc6efa700bf6839ccc3f8818ae9bbdcf83b4b7afe1f7343
SHA512

27aec6bc5c51927c81050a78c65415d39286646fb5849f9db313a17e59371607315f6cfbf5783bf31f494a26115a387953fa21a5750d65c50a567ee4dc7d22ac
SSDEEP

768:cPL8vVNpOPpw+oeeZ4LOLTjq3UI7bjWOLMF4Woy0FMQT6XE:AQvVNAPS+TeZXESgMF4WMfCE

Score

10^/10

mirai miori botnet

Malware Config

Extracted

Family

mirai

Botnet

MIORI

Signatures

Mirai
Mirai is a prevalent Linux malware infecting exposed network devices.
botnet mirai

Reads runtime system information 1 IoCs

Reads data from /proc virtual filesystem.

description	ioc	Process
File opened for reading	/proc/self/exe	miori.arm7.elf

/tmp/miori.arm7.elf
/tmp/miori.arm7.elf
1⤵
- Reads runtime system information
PID:351

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads