mirai | a2d2b8b7921543b471dcaf5dc1407e4b3472c1e4a3da8a1dbef1528032877b39 | Triage

Sharing

General

Target

f9ee3326e6fb5ed1389eaec103ff66d3
Size

94KB
Sample

231220-v73y3sbhc7
MD5

f9ee3326e6fb5ed1389eaec103ff66d3
SHA1

d1d13c8be7420317475aab6d590a8d09f6c80e56
SHA256

a2d2b8b7921543b471dcaf5dc1407e4b3472c1e4a3da8a1dbef1528032877b39
SHA512

09ac56f685a92258c34cc47f71cd3233dfab89b6a0505167624fca6e06175c602282e3e929df9e996fbc25408d3c952ce7ab01c8d6943b1f79bdd434a4b42a6c
SSDEEP

1536:c7xTCdrD/GmnQXVokFl9RQCfyiMrOLHgvFWw6l4e7OSK4ixRndT:c7tCVBnQ/Fl9RZy9rOWFWw6o7T

Score

10^/10

mirai bot discovery

Malware Config

Extracted

Family

mirai

Botnet

BOT

Targets

- Target
  
  f9ee3326e6fb5ed1389eaec103ff66d3
- Size
  
  94KB
- MD5
  
  f9ee3326e6fb5ed1389eaec103ff66d3
- SHA1
  
  d1d13c8be7420317475aab6d590a8d09f6c80e56
- SHA256
  
  a2d2b8b7921543b471dcaf5dc1407e4b3472c1e4a3da8a1dbef1528032877b39
- SHA512
  
  09ac56f685a92258c34cc47f71cd3233dfab89b6a0505167624fca6e06175c602282e3e929df9e996fbc25408d3c952ce7ab01c8d6943b1f79bdd434a4b42a6c
- SSDEEP
  
  1536:c7xTCdrD/GmnQXVokFl9RQCfyiMrOLHgvFWw6l4e7OSK4ixRndT:c7tCVBnQ/Fl9RZy9rOWFWw6o7T
Score

9^/10

discovery
- Contacts a large (196073) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1