mirai | af7927deb6c32424f448ce6e590dd53ad121a4a62aa9bd586b29a604a7b03b38 | Triage

Analysis

max time kernel
1s
platform
debian-9_armhf
resource
debian9-armhf-20231222-en
resource tags

arch:armhfimage:debian9-armhf-20231222-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
submitted
07/01/2024, 19:31

Sharing

Report Analysis Logs

General

Target

605faf626fbe771bcbf50f161b55d7d9elf.elf
Size

33KB
MD5

605faf626fbe771bcbf50f161b55d7d9
SHA1

f90eabf7ac7daf81016a458c4ae9e6af449ec766
SHA256

af7927deb6c32424f448ce6e590dd53ad121a4a62aa9bd586b29a604a7b03b38
SHA512

b95a3203fd1a48aaaf23e481ad6e8cafdadd1c88c7fc88f9cfe1190300a83676e7a2ee130443b2a92791e11f87cc610c04780d7c78dcc391dc2467db58f6426a
SSDEEP

768:KXrcETjI56FDj0s5QW5CBoscVdZq0G16HjZu73UC:KXrPTjIkFHb5/DZqwZi

Score

10^/10

mirai mirai botnet

Malware Config

Extracted

Family

mirai

Botnet

MIRAI

Signatures

Mirai
Mirai is a prevalent Linux malware infecting exposed network devices.
botnet mirai

Reads runtime system information 1 IoCs

Reads data from /proc virtual filesystem.

description	ioc	Process
File opened for reading	/proc/self/exe	605faf626fbe771bcbf50f161b55d7d9elf.elf

/tmp/605faf626fbe771bcbf50f161b55d7d9elf.elf
/tmp/605faf626fbe771bcbf50f161b55d7d9elf.elf
1⤵
- Reads runtime system information
PID:681

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads