mirai | 374837a8ca0c717bde4c1ee9999a401819dd0bed2176fc625668d78141cd1efb | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

7

2c1872bfc1...d109f2

debian-9-armhf

Sharing

General

Target

2c1872bfc148902337bb069a77d109f2
Size

53KB
Sample

231219-2r7ewsdegm
MD5

2c1872bfc148902337bb069a77d109f2
SHA1

e2bbae5f111920736d0ae4bf659a50440e252271
SHA256

374837a8ca0c717bde4c1ee9999a401819dd0bed2176fc625668d78141cd1efb
SHA512

c2a003888bb9785390892a02f71a903051f1372ee59a3852b843fd2f11d076f2e77e0e55d41d5603f86101913c5e5bfc6b1bfc3ed685e3bee6087ccf5c232d29
SSDEEP

1536:QL61ZKq7Z4ZrRKKcyz0pTAyseLByPKlgOfz:X1ZPwuy4TDhSG

Score

10^/10

mirai botnet discovery upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2c1872bfc148902337bb069a77d109f2

Resource

debian9-armhf-20231215-en

mirai botnet discovery

debian-9-armhf

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  2c1872bfc148902337bb069a77d109f2
- Size
  
  53KB
- MD5
  
  2c1872bfc148902337bb069a77d109f2
- SHA1
  
  e2bbae5f111920736d0ae4bf659a50440e252271
- SHA256
  
  374837a8ca0c717bde4c1ee9999a401819dd0bed2176fc625668d78141cd1efb
- SHA512
  
  c2a003888bb9785390892a02f71a903051f1372ee59a3852b843fd2f11d076f2e77e0e55d41d5603f86101913c5e5bfc6b1bfc3ed685e3bee6087ccf5c232d29
- SSDEEP
  
  1536:QL61ZKq7Z4ZrRKKcyz0pTAyseLByPKlgOfz:X1ZPwuy4TDhSG
Score

10^/10

mirai botnet discovery
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Contacts a large (20140) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Enumerates active TCP sockets
  Gets active TCP sockets from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Network Service Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

miraibotnetdiscovery

© 2018-2025

Terms | Privacy