mirai | 83c9f98b8581dc1080e8cc109de4d25cd23de876d6342bcda51ecf925d678abc | Triage

Sharing

General

Target

693f493336205b86b491f4b9c8e0260b
Size

82KB
Sample

231219-3gn18sgadn
MD5

693f493336205b86b491f4b9c8e0260b
SHA1

97084206cc7654955394521099d05533dd40478c
SHA256

83c9f98b8581dc1080e8cc109de4d25cd23de876d6342bcda51ecf925d678abc
SHA512

0c0665cfe2e59135ee6d5df79e4c070e75c1efa52edaa60b78baa520ca217a755712453f60e100d889981bc2b4073f9848055e3402e8297ee212cf53ff694eb6
SSDEEP

1536:bi8aSh684QdS2ZH+MZ4DKK+5F2MivvxGiZ8JqUU11Kwo5sHLuO6:GFq4oF2pv5Gi1FluT

Score

10^/10

mirai rekai discovery

Malware Config

Extracted

Family

mirai

Botnet

REKAI

Targets

- Target
  
  693f493336205b86b491f4b9c8e0260b
- Size
  
  82KB
- MD5
  
  693f493336205b86b491f4b9c8e0260b
- SHA1
  
  97084206cc7654955394521099d05533dd40478c
- SHA256
  
  83c9f98b8581dc1080e8cc109de4d25cd23de876d6342bcda51ecf925d678abc
- SHA512
  
  0c0665cfe2e59135ee6d5df79e4c070e75c1efa52edaa60b78baa520ca217a755712453f60e100d889981bc2b4073f9848055e3402e8297ee212cf53ff694eb6
- SSDEEP
  
  1536:bi8aSh684QdS2ZH+MZ4DKK+5F2MivvxGiZ8JqUU11Kwo5sHLuO6:GFq4oF2pv5Gi1FluT
Score

9^/10

discovery
- Contacts a large (7041) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1