Overview

overview

7

Static

static

7

91942f5b16...df.elf

debian-9-armhf

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    91942f5b16d7ba715a796febdce49d0eb2c4850910a807ed78005336b3d5afdf.elf

  • Size

    59KB

  • Sample

    240213-dvr8dagg25

  • MD5

    0633df94906121f546d6df8970ed58ae

  • SHA1

    a93f1cd423605322a0bb2850615a0fe5aea1b3a0

  • SHA256

    91942f5b16d7ba715a796febdce49d0eb2c4850910a807ed78005336b3d5afdf

  • SHA512

    09364f5f541642af65a9fcd2825fd1b9c30478f5e177965692f63aa8f4a88518e5b2a7a1ce7e7a4636c1e0551be0e49659bfc8d40e2d9a2fd6f7220f50086b60

  • SSDEEP

    1536:gTlheJ5bdegbnBoSAs3dULQvQ4r5G1rqkS+WM/j:ZP3bnBoBs+LuSlj

Score
7/10
upx

Malware Config

Targets

    • Target

      91942f5b16d7ba715a796febdce49d0eb2c4850910a807ed78005336b3d5afdf.elf

    • Size

      59KB

    • MD5

      0633df94906121f546d6df8970ed58ae

    • SHA1

      a93f1cd423605322a0bb2850615a0fe5aea1b3a0

    • SHA256

      91942f5b16d7ba715a796febdce49d0eb2c4850910a807ed78005336b3d5afdf

    • SHA512

      09364f5f541642af65a9fcd2825fd1b9c30478f5e177965692f63aa8f4a88518e5b2a7a1ce7e7a4636c1e0551be0e49659bfc8d40e2d9a2fd6f7220f50086b60

    • SSDEEP

      1536:gTlheJ5bdegbnBoSAs3dULQvQ4r5G1rqkS+WM/j:ZP3bnBoBs+LuSlj

    Score
    7/10

    • Flushes firewall rules

      Flushes/ disables firewall rules inside the Linux kernel.

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Writes DNS configuration

      Writes data to DNS resolver config file.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks