General
-
Target
boatnet.x86
-
Size
52KB
-
Sample
231030-rgrxcafc54
-
MD5
33b623c2aab2ebff01afd39971ae9f29
-
SHA1
5c8de24daf7a4753a635a46a4ad71f889a0f1b76
-
SHA256
adf393b79bf3769e1e26ebee461adb73362d4515f60a3eff0406ba4be5926185
-
SHA512
22e98aec2c867dabc9782b49fa7a984a26dd640e8c086d7feeb8ca9fd1d952dde8761c304b0fe5e13114ccc28679dfd89770d8c0f852ccd348b6d66eb9ba69ed
-
SSDEEP
768:TGpjM9WF9ln3Hi8WX1gVHVMcV7gowbBnOvoElEb454vc3NwyzT0IOCP/OXVzo5vs:TGp2kln3Hi76V1yy3KWNw8DeXV850
Malware Config
Extracted
mirai
LZRD
Targets
-
-
Target
boatnet.x86
-
Size
52KB
-
MD5
33b623c2aab2ebff01afd39971ae9f29
-
SHA1
5c8de24daf7a4753a635a46a4ad71f889a0f1b76
-
SHA256
adf393b79bf3769e1e26ebee461adb73362d4515f60a3eff0406ba4be5926185
-
SHA512
22e98aec2c867dabc9782b49fa7a984a26dd640e8c086d7feeb8ca9fd1d952dde8761c304b0fe5e13114ccc28679dfd89770d8c0f852ccd348b6d66eb9ba69ed
-
SSDEEP
768:TGpjM9WF9ln3Hi8WX1gVHVMcV7gowbBnOvoElEb454vc3NwyzT0IOCP/OXVzo5vs:TGp2kln3Hi76V1yy3KWNw8DeXV850
Score7/10-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
Enumerates running processes
Discovers information about currently running processes on the system
-
Writes file to system bin folder
-