mirai | cd3f5dee5fcf1f1a4fa25174e5e8c73957b5967f8e927b26877fd3c84ea56763 | Triage

Submit
Reports

Overview

overview

Static

static

7

mips (2).elf

debian-9-mips

Sharing

General

Target

mips (2).elf
Size

32KB
Sample

240218-tj267scd87
MD5

06d778c4911581223cf115a23216c7a2
SHA1

779cee4e03e18b9ac36e2c6a53052081e8704854
SHA256

cd3f5dee5fcf1f1a4fa25174e5e8c73957b5967f8e927b26877fd3c84ea56763
SHA512

7a934d279cbac0eb711600829c7a2210e867ed007615b6636e25ec9b607430fe6e29b829e6d33e18791bc145b75a9b5b2365510072e6c7404e93f7f481fe87ba
SSDEEP

768:kjEXij0E8+Ysb41g7y3OHFUWRIAPO7OYYhJgGlzDpbuR1Jcz:AEXiA1WO3OHFUWuOSxYzVJu4

Score

10^/10

mirai mirai botnet evasion upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

mips (2).elf

Resource

debian9-mipsbe-20231215-en

mirai mirai botnet evasion

debian-9-mips

7 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

MIRAI

Targets

- Target
  
  mips (2).elf
- Size
  
  32KB
- MD5
  
  06d778c4911581223cf115a23216c7a2
- SHA1
  
  779cee4e03e18b9ac36e2c6a53052081e8704854
- SHA256
  
  cd3f5dee5fcf1f1a4fa25174e5e8c73957b5967f8e927b26877fd3c84ea56763
- SHA512
  
  7a934d279cbac0eb711600829c7a2210e867ed007615b6636e25ec9b607430fe6e29b829e6d33e18791bc145b75a9b5b2365510072e6c7404e93f7f481fe87ba
- SSDEEP
  
  768:kjEXij0E8+Ysb41g7y3OHFUWRIAPO7OYYhJgGlzDpbuR1Jcz:AEXiA1WO3OHFUWuOSxYzVJu4
Score

10^/10

mirai mirai botnet evasion
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Changes its process name
- Deletes Audit logs
  Deletes logs related to the Linux Audit framework.
  evasion
- Deletes itself
- Deletes system logs
  Deletes log file which contains global system messages. Adversaries may delete system logs to minimize their footprint.
  evasion
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Deletes log files
  Deletes log files on the system.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Indicator Removal

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

miraimiraibotnetevasion

© 2018-2024

Terms | Privacy