mirai | 24411f85b7107ccac1d54c5c9173c5fc88a1ad01aaddf1a5f5374b4a136ddf33 | Triage

Sharing

General

Target

fc393663edc669efeec0e0c54d5c82f9.elf
Size

54KB
Sample

240201-nevcxadhbr
MD5

fc393663edc669efeec0e0c54d5c82f9
SHA1

7d6049b194c6dc050a6844ae03f12a996e459eae
SHA256

24411f85b7107ccac1d54c5c9173c5fc88a1ad01aaddf1a5f5374b4a136ddf33
SHA512

7ca8fd5c48d20572bd3e4c5dbd9fc3e1d118a70c5e84f30fca18bbe1514fcbb1039bcb6854cfa3af67707543f0f3cbe7a8113e48f5be4446b7a9fff5e93625e1
SSDEEP

768:FmnthEsW5qnF15RY1dhPe7oXTmcPDj5gk9vWnTI4eBH+4sToQLDKFv:Yn/EsW5qhSh6am0lWnU4GH+dNLY

Score

10^/10

mirai demons linux

Malware Config

Extracted

Family

mirai

Botnet

DEMONS

Targets

- Target
  
  fc393663edc669efeec0e0c54d5c82f9.elf
- Size
  
  54KB
- MD5
  
  fc393663edc669efeec0e0c54d5c82f9
- SHA1
  
  7d6049b194c6dc050a6844ae03f12a996e459eae
- SHA256
  
  24411f85b7107ccac1d54c5c9173c5fc88a1ad01aaddf1a5f5374b4a136ddf33
- SHA512
  
  7ca8fd5c48d20572bd3e4c5dbd9fc3e1d118a70c5e84f30fca18bbe1514fcbb1039bcb6854cfa3af67707543f0f3cbe7a8113e48f5be4446b7a9fff5e93625e1
- SSDEEP
  
  768:FmnthEsW5qnF15RY1dhPe7oXTmcPDj5gk9vWnTI4eBH+4sToQLDKFv:Yn/EsW5qhSh6am0lWnU4GH+dNLY
Score

6^/10
- Enumerates active TCP sockets
  Gets active TCP sockets from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1