Malware Analysis Report

2024-11-13 13:36

Sample ID 240203-3ms75sehbl
Target 8da8467ece90dd64f5d7f17c8c7a8b05
SHA256 2585821a6f7c952a4fa6c099d915d2fd08e6b922b1a1e0b67fa89e2bbe7151fc
Tags
echobot mirai
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

SHA256

2585821a6f7c952a4fa6c099d915d2fd08e6b922b1a1e0b67fa89e2bbe7151fc

Threat Level: Known bad

The file 8da8467ece90dd64f5d7f17c8c7a8b05 was found to be: Known bad.

Malicious Activity Summary

echobot mirai

Detected Echobot

Echobot family

Mirai family

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2024-02-03 23:38

Signatures

Detected Echobot

Description Indicator Process Target
N/A N/A N/A N/A

Echobot family

echobot

Mirai family

mirai

Analysis: behavioral1

Detonation Overview

Submitted

2024-02-03 23:38

Reported

2024-02-03 23:40

Platform

debian9-armhf-20231215-en

Max time kernel

2s

Command Line

[/tmp/8da8467ece90dd64f5d7f17c8c7a8b05]

Signatures

N/A

Processes

/tmp/8da8467ece90dd64f5d7f17c8c7a8b05

[/tmp/8da8467ece90dd64f5d7f17c8c7a8b05]

Network

N/A

Files

N/A