mirai | 5f1e4e30a97a3e80200c9d08ddf18f75aa1be1ff95a7b87a99c1837edd66b8de | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

5f1e4e30a9...de.elf

debian-9-armhf

7

Sharing

General

Target

5f1e4e30a97a3e80200c9d08ddf18f75aa1be1ff95a7b87a99c1837edd66b8de.elf
Size

118KB
Sample

240212-cwa5tagd5z
MD5

3db5de79977965c4cf2d7b9c28b0d7b1
SHA1

dd578ebc56b463f08aae21b9b380d7d04f5554ac
SHA256

5f1e4e30a97a3e80200c9d08ddf18f75aa1be1ff95a7b87a99c1837edd66b8de
SHA512

a8dffbf69c9d6f10e4523b284615665a1d7e7f590e21209d889aeffb292ce10b386a2d035972384260266a5416fa268c063f992ed714770a408cf3df4c106a92
SSDEEP

1536:JhtOKfEquXRFOAKBc4Va2/sTgdcFBTvqs2En4dFlzeXwywrFv7U8+5tlqGKKOt7b:Jh83hFOc4pkMdcFBT8K4mpUcA

Score

10^/10

mirai

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

5f1e4e30a97a3e80200c9d08ddf18f75aa1be1ff95a7b87a99c1837edd66b8de.elf

Resource

debian9-armhf-20231222-en

debian-9-armhf

3 signatures

150 seconds

Malware Config

Extracted

Family

mirai

C2

bp.somersaultcloud.xyz

Targets

- Target
  
  5f1e4e30a97a3e80200c9d08ddf18f75aa1be1ff95a7b87a99c1837edd66b8de.elf
- Size
  
  118KB
- MD5
  
  3db5de79977965c4cf2d7b9c28b0d7b1
- SHA1
  
  dd578ebc56b463f08aae21b9b380d7d04f5554ac
- SHA256
  
  5f1e4e30a97a3e80200c9d08ddf18f75aa1be1ff95a7b87a99c1837edd66b8de
- SHA512
  
  a8dffbf69c9d6f10e4523b284615665a1d7e7f590e21209d889aeffb292ce10b386a2d035972384260266a5416fa268c063f992ed714770a408cf3df4c106a92
- SSDEEP
  
  1536:JhtOKfEquXRFOAKBc4Va2/sTgdcFBTvqs2En4dFlzeXwywrFv7U8+5tlqGKKOt7b:Jh83hFOc4pkMdcFBT8K4mpUcA
Score

7^/10
- Changes its process name
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy