mirai | cf3b2fa1ae57458654c87b89743f17ba4a26a9ed2805f5784b2375bc7052f5cb | Triage

Submit
Reports

Overview

overview

Static

static

7

cf3b2fa1ae...cb.elf

debian-9-armhf

Sharing

General

Target

cf3b2fa1ae57458654c87b89743f17ba4a26a9ed2805f5784b2375bc7052f5cb.elf
Size

35KB
Sample

240212-e7b8csca48
MD5

bdb25b48a3e25f5710404d7375ca5d48
SHA1

0b63016bc34b940b5150c0f9e7aba70cd8461f0d
SHA256

cf3b2fa1ae57458654c87b89743f17ba4a26a9ed2805f5784b2375bc7052f5cb
SHA512

e2c77a625babaa6d4e34fbb0115a2ff89c244f2c9bf011503d25a9d7aeeb5e3da3da6b62a13c3c5b915345e540b41ccc948f80288f81561b13820965b6d501fa
SSDEEP

768:S7v9aCKN1qksvrYWJBjprWIpP0kohP27mA2AR3U2Y:0vNgX4Y+Wi7SAlY

Score

10^/10

mirai botnet upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

cf3b2fa1ae57458654c87b89743f17ba4a26a9ed2805f5784b2375bc7052f5cb.elf

Resource

debian9-armhf-20231221-en

debian-9-armhf

4 signatures

150 seconds

Malware Config

Extracted

Family

mirai

C2

scan.rebirthltd.top

Targets

- Target
  
  cf3b2fa1ae57458654c87b89743f17ba4a26a9ed2805f5784b2375bc7052f5cb.elf
- Size
  
  35KB
- MD5
  
  bdb25b48a3e25f5710404d7375ca5d48
- SHA1
  
  0b63016bc34b940b5150c0f9e7aba70cd8461f0d
- SHA256
  
  cf3b2fa1ae57458654c87b89743f17ba4a26a9ed2805f5784b2375bc7052f5cb
- SHA512
  
  e2c77a625babaa6d4e34fbb0115a2ff89c244f2c9bf011503d25a9d7aeeb5e3da3da6b62a13c3c5b915345e540b41ccc948f80288f81561b13820965b6d501fa
- SSDEEP
  
  768:S7v9aCKN1qksvrYWJBjprWIpP0kohP27mA2AR3U2Y:0vNgX4Y+Wi7SAlY
Score

10^/10

mirai botnet
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Changes its process name
- Deletes itself
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy