General
-
Target
2bf9010d2187a11196c8daf42509d97b.elf
-
Size
150KB
-
Sample
240106-wjky2aedg7
-
MD5
2bf9010d2187a11196c8daf42509d97b
-
SHA1
83b72615c8c95316ce5145ceddfdb9e315dbfad8
-
SHA256
6a09c3ab5061b5f9ec90614822dd1d4511029ecfb77643e69ef38352894804dd
-
SHA512
2e2b57cc9213e99c9468ca3157625a26f341e42b56697d91de7e4f0b00e6936e327e98bf393005acfe54a8d4c96c00a9785058a63098bd51791bddd2cd4ae223
-
SSDEEP
3072:kREtlpBQpCyFFTs4VRIT3xcOblDBF9Ghu2:kRRpJds4VyT3xPpBF9Yu2
Malware Config
Extracted
mirai
bngoc.skyljne.click
Targets
-
-
Target
2bf9010d2187a11196c8daf42509d97b.elf
-
Size
150KB
-
MD5
2bf9010d2187a11196c8daf42509d97b
-
SHA1
83b72615c8c95316ce5145ceddfdb9e315dbfad8
-
SHA256
6a09c3ab5061b5f9ec90614822dd1d4511029ecfb77643e69ef38352894804dd
-
SHA512
2e2b57cc9213e99c9468ca3157625a26f341e42b56697d91de7e4f0b00e6936e327e98bf393005acfe54a8d4c96c00a9785058a63098bd51791bddd2cd4ae223
-
SSDEEP
3072:kREtlpBQpCyFFTs4VRIT3xcOblDBF9Ghu2:kRRpJds4VyT3xPpBF9Yu2
Score9/10-
Contacts a large (85402) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Changes its process name
-
Enumerates running processes
Discovers information about currently running processes on the system
-