mirai | bd761ca7167b96b401cdae16f9c527729e22d6f23808ce0bc6f0c7fbc5298cc4 | Triage

Sharing

General

Target

06bbfbc4674b7d260369dc38cbbc05c5
Size

77KB
Sample

231219-2bvq6aafb6
MD5

06bbfbc4674b7d260369dc38cbbc05c5
SHA1

5796862ab7f56f63d9303a272295d2a33c4046e2
SHA256

bd761ca7167b96b401cdae16f9c527729e22d6f23808ce0bc6f0c7fbc5298cc4
SHA512

96eb4ac536ca94788ce8973e07062aa6f099eadb637acf695a35152eaea21e265a20edbda9876c5fb96aa7137b69939b8c80e61679924aa0119ad0a0d132d45f
SSDEEP

1536:9rbYfnhlXaZP8t45wbmOL5Qcnpyq9zkfnKrIMmuV1VnCxRnF:9rUfk84+5RpmfnK9mH

Score

10^/10

mirai bot discovery

Malware Config

Extracted

Family

mirai

Botnet

BOT

Targets

- Target
  
  06bbfbc4674b7d260369dc38cbbc05c5
- Size
  
  77KB
- MD5
  
  06bbfbc4674b7d260369dc38cbbc05c5
- SHA1
  
  5796862ab7f56f63d9303a272295d2a33c4046e2
- SHA256
  
  bd761ca7167b96b401cdae16f9c527729e22d6f23808ce0bc6f0c7fbc5298cc4
- SHA512
  
  96eb4ac536ca94788ce8973e07062aa6f099eadb637acf695a35152eaea21e265a20edbda9876c5fb96aa7137b69939b8c80e61679924aa0119ad0a0d132d45f
- SSDEEP
  
  1536:9rbYfnhlXaZP8t45wbmOL5Qcnpyq9zkfnKrIMmuV1VnCxRnF:9rUfk84+5RpmfnK9mH
Score

9^/10

discovery
- Contacts a large (223033) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1