mirai | f101b9e30601bb9d7f0ae2b6c11fb4bd01fb53b2d38f2ecf1ea72bafa5b28c66 | Triage

Sharing

General

Target

f4db60d2439a6594206a56a2cc54f1f6
Size

38KB
Sample

231220-vt9jpsfhh7
MD5

f4db60d2439a6594206a56a2cc54f1f6
SHA1

c50be825235323bcb2e8441767369fd4cf493529
SHA256

f101b9e30601bb9d7f0ae2b6c11fb4bd01fb53b2d38f2ecf1ea72bafa5b28c66
SHA512

f2b1bce3b877253cc5d357f9c08a26bef3204c12bb2ebbec01a8c96f29aabbd5a798537d430e3a89f51e4baa2f613a2442e5a067999aebb87f78caaef8cef0b5
SSDEEP

768:j6MdnoABF4RZZLA3eYplD22XJobz8tt/Pd3m8QABFm5MwNOVbuHkAxRnYahEW:LdVF4tgRon8H3dWYmG4HxRn

Score

10^/10

mirai bot discovery

Malware Config

Extracted

Family

mirai

Botnet

BOT

Targets

- Target
  
  f4db60d2439a6594206a56a2cc54f1f6
- Size
  
  38KB
- MD5
  
  f4db60d2439a6594206a56a2cc54f1f6
- SHA1
  
  c50be825235323bcb2e8441767369fd4cf493529
- SHA256
  
  f101b9e30601bb9d7f0ae2b6c11fb4bd01fb53b2d38f2ecf1ea72bafa5b28c66
- SHA512
  
  f2b1bce3b877253cc5d357f9c08a26bef3204c12bb2ebbec01a8c96f29aabbd5a798537d430e3a89f51e4baa2f613a2442e5a067999aebb87f78caaef8cef0b5
- SSDEEP
  
  768:j6MdnoABF4RZZLA3eYplD22XJobz8tt/Pd3m8QABFm5MwNOVbuHkAxRnYahEW:LdVF4tgRon8H3dWYmG4HxRn
Score

9^/10

discovery
- Contacts a large (53971) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1