mirai | 8b33823366ce20a7246f967e542555b976e1c966d414aa71785d08b1f2cb3572 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

07ae2774ca...dac02f

debian-9-mipsel

9

Sharing

General

Target

07ae2774caf546358cde3b9751dac02f
Size

89KB
Sample

231219-2b8b9aagd6
MD5

07ae2774caf546358cde3b9751dac02f
SHA1

2dee08f7812fe7c8d4d1ba121a635e7344a5af9c
SHA256

8b33823366ce20a7246f967e542555b976e1c966d414aa71785d08b1f2cb3572
SHA512

6a8e20b24345c184a91f1d1df93d4c679a3cf2bdee2cec170ca1e99cc61cf87f8690ecf355adb2017ce1b3a553d95d7bdce38e26e19d0a8b68b7c1194d70fdf0
SSDEEP

1536:NYCYxrXP40ODJPwHRQ9PlzTRfyToNoZqKi:qCYxrKDJ46N7

Score

10^/10

mirai lzrd discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

07ae2774caf546358cde3b9751dac02f

Resource

debian9-mipsel-20231215-en

debian-9-mipsel

7 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

- Target
  
  07ae2774caf546358cde3b9751dac02f
- Size
  
  89KB
- MD5
  
  07ae2774caf546358cde3b9751dac02f
- SHA1
  
  2dee08f7812fe7c8d4d1ba121a635e7344a5af9c
- SHA256
  
  8b33823366ce20a7246f967e542555b976e1c966d414aa71785d08b1f2cb3572
- SHA512
  
  6a8e20b24345c184a91f1d1df93d4c679a3cf2bdee2cec170ca1e99cc61cf87f8690ecf355adb2017ce1b3a553d95d7bdce38e26e19d0a8b68b7c1194d70fdf0
- SSDEEP
  
  1536:NYCYxrXP40ODJPwHRQ9PlzTRfyToNoZqKi:qCYxrKDJ46N7
Score

9^/10

discovery
- Contacts a large (20212) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Enumerates active TCP sockets
  Gets active TCP sockets from /proc virtual filesystem.
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Network Service Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.