Overview

overview

10

Static

static

7

e021c2c218...5e.elf

ubuntu-18.04-amd64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e021c2c2182b81855d79fdbd5cede333d5b8dbc5d007b59eb34da43f917dd35e.elf

  • Size

    36KB

  • Sample

    240212-efe5yagg52

  • MD5

    e836010c80b736dfa06e5e6cd8ec6ca3

  • SHA1

    868f28e8787112ec88a9973ff310df55b4d5687b

  • SHA256

    e021c2c2182b81855d79fdbd5cede333d5b8dbc5d007b59eb34da43f917dd35e

  • SHA512

    ce0a957f876083663ddafe1c5d1ae9cfa9e7ea50c4de2c613fff95aa3d1c8c502425f8b41364311aad7fe7b4904470690aebc167ed5ecbca0f09da026aded394

  • SSDEEP

    768:y2579LO+NfzGkpWgxBnV3h+CxJ2l6GHSav9fv9sPVhL:y27ycfJWIr+MJ2l6bapFuVhL

Score
10/10
miraibotnetbotnetlinuxupx

Malware Config

Extracted

Family

mirai

Botnet

BOTNET

C2

scan.rebirthltd.top

194.169.175.3

Targets

    • Target

      e021c2c2182b81855d79fdbd5cede333d5b8dbc5d007b59eb34da43f917dd35e.elf

    • Size

      36KB

    • MD5

      e836010c80b736dfa06e5e6cd8ec6ca3

    • SHA1

      868f28e8787112ec88a9973ff310df55b4d5687b

    • SHA256

      e021c2c2182b81855d79fdbd5cede333d5b8dbc5d007b59eb34da43f917dd35e

    • SHA512

      ce0a957f876083663ddafe1c5d1ae9cfa9e7ea50c4de2c613fff95aa3d1c8c502425f8b41364311aad7fe7b4904470690aebc167ed5ecbca0f09da026aded394

    • SSDEEP

      768:y2579LO+NfzGkpWgxBnV3h+CxJ2l6GHSav9fv9sPVhL:y27ycfJWIr+MJ2l6bapFuVhL

    Score
    10/10
    miraibotnetbotnet

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

      botnetmirai

    • Changes its process name

    • Deletes itself

    behavioral1

MITRE ATT&CK Matrix

Tasks