mirai | 7ab8b932a56587b84038e0ee4cfe5cce476b3aacd408f2dfd0be9d6151ff66e8 | Triage

Sharing

General

Target

3dc431e27b69770e2849aa056032a3ce
Size

57KB
Sample

231219-2zth1abha5
MD5

3dc431e27b69770e2849aa056032a3ce
SHA1

2f402821fafd39fa3419007ec92ffb2b2ea12bdf
SHA256

7ab8b932a56587b84038e0ee4cfe5cce476b3aacd408f2dfd0be9d6151ff66e8
SHA512

314e4fc536387c5d593405dca46ffcc2fa780b82371b78756aafa5f3d7562f37b31cb0b195cd33628ce6fcb2debbc72d626c87876e2f2d156999b1af92b1cf8c
SSDEEP

768:XEBGmlno0sHTllEdN1spthLN4/fibwsAff89EFGCBNEYm2wvGJiMTWK2eY:XEBto0szrE/1spTL6E2VPww7WK2eY

Score

10^/10

mirai apep linux

Malware Config

Extracted

Family

mirai

Botnet

APEP

Targets

- Target
  
  3dc431e27b69770e2849aa056032a3ce
- Size
  
  57KB
- MD5
  
  3dc431e27b69770e2849aa056032a3ce
- SHA1
  
  2f402821fafd39fa3419007ec92ffb2b2ea12bdf
- SHA256
  
  7ab8b932a56587b84038e0ee4cfe5cce476b3aacd408f2dfd0be9d6151ff66e8
- SHA512
  
  314e4fc536387c5d593405dca46ffcc2fa780b82371b78756aafa5f3d7562f37b31cb0b195cd33628ce6fcb2debbc72d626c87876e2f2d156999b1af92b1cf8c
- SSDEEP
  
  768:XEBGmlno0sHTllEdN1spthLN4/fibwsAff89EFGCBNEYm2wvGJiMTWK2eY:XEBto0szrE/1spTL6E2VPww7WK2eY
Score

6^/10
- Enumerates active TCP sockets
  Gets active TCP sockets from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1