mirai | 14456d2015b422264b859d926cc335048cec988bc65715708189ca2950b59efc | Triage

Submit
Reports

Overview

overview

Static

static

7

x86.elf

ubuntu-20.04-amd64

Sharing

General

Target

x86.elf
Size

26KB
Sample

240220-r75wwsae47
MD5

43d53cca019d0cff5b80c7b0d6860151
SHA1

a13746fef247693168c5eb85c5b8985096da5182
SHA256

14456d2015b422264b859d926cc335048cec988bc65715708189ca2950b59efc
SHA512

73f3f3fda018e8c1f209d01806eb1a08445aefd9a1fa825369d80885bc86555d7b8d3850625fa249b4b5584ec01f51f3c0f5d0ea7216993c35acbc8725abfbca
SSDEEP

384:M8v66YgiokzDM366q1tl8tN+7mOt7GvvfGjWNC+yfIzsYFqnD5vOXw6EM+v1Rn:J66Y4hy8S7GnAmufAYn5of+n

Score

10^/10

mirai botnet botnet discovery linux upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

x86.elf

Resource

ubuntu2004-amd64-20240220-en

mirai botnet botnet discovery

ubuntu-20.04-amd64

7 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

BOTNET

C2

securecameoutgay.ddns.net

Targets

- Target
  
  x86.elf
- Size
  
  26KB
- MD5
  
  43d53cca019d0cff5b80c7b0d6860151
- SHA1
  
  a13746fef247693168c5eb85c5b8985096da5182
- SHA256
  
  14456d2015b422264b859d926cc335048cec988bc65715708189ca2950b59efc
- SHA512
  
  73f3f3fda018e8c1f209d01806eb1a08445aefd9a1fa825369d80885bc86555d7b8d3850625fa249b4b5584ec01f51f3c0f5d0ea7216993c35acbc8725abfbca
- SSDEEP
  
  384:M8v66YgiokzDM366q1tl8tN+7mOt7GvvfGjWNC+yfIzsYFqnD5vOXw6EM+v1Rn:J66Y4hy8S7GnAmufAYn5of+n
Score

10^/10

mirai botnet botnet discovery
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Contacts a large (114621) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Changes its process name
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

miraibotnetbotnetdiscovery

© 2018-2025

Terms | Privacy