General

  • Target

    a0587444b330396a655da01a7cc8405774da42b042a61812f884b95102273a70.elf

  • Size

    20KB

  • Sample

    240213-d7ykxshh87

  • MD5

    ff6de7225359086e82701d3738bc68a8

  • SHA1

    79cc64d6d0439f769a108f2b0e1e2fe9913a870d

  • SHA256

    a0587444b330396a655da01a7cc8405774da42b042a61812f884b95102273a70

  • SHA512

    79c5c81dd533fd843f030443be0ac05ec1569f18ebea1da4261c3d85e381d01fd5cc1538b1f5f0b842a30ef0d22e247395f1180d50e0a3e7ad4b1d53bb5efabe

  • SSDEEP

    384:M0sLpj8s/qPui8uZxoIA57RWQjJiEVi+ZkJaQNAr8vcoBAvP+qNV+KLebRtu7SyQ:k98o08kxofBE+ZkJaT47C2EpitmQ

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      a0587444b330396a655da01a7cc8405774da42b042a61812f884b95102273a70.elf

    • Size

      20KB

    • MD5

      ff6de7225359086e82701d3738bc68a8

    • SHA1

      79cc64d6d0439f769a108f2b0e1e2fe9913a870d

    • SHA256

      a0587444b330396a655da01a7cc8405774da42b042a61812f884b95102273a70

    • SHA512

      79c5c81dd533fd843f030443be0ac05ec1569f18ebea1da4261c3d85e381d01fd5cc1538b1f5f0b842a30ef0d22e247395f1180d50e0a3e7ad4b1d53bb5efabe

    • SSDEEP

      384:M0sLpj8s/qPui8uZxoIA57RWQjJiEVi+ZkJaQNAr8vcoBAvP+qNV+KLebRtu7SyQ:k98o08kxofBE+ZkJaT47C2EpitmQ

    Score
    10/10
    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Writes file to system bin folder

MITRE ATT&CK Enterprise v15

Tasks