General
-
Target
37b552e1027ecf2bdec32cf8c538baa058928b560dd225611a4ea5deb16cb739.elf
-
Size
97KB
-
Sample
240223-fn8b5aca59
-
MD5
6d658881294fbbcb36dee0f4bc05c98a
-
SHA1
b772975381cb0c2b5897eac6eb1d94049719b708
-
SHA256
37b552e1027ecf2bdec32cf8c538baa058928b560dd225611a4ea5deb16cb739
-
SHA512
4f316659a7cf125852a94a61a824f819d29a8d913d656c325152588b7d0c6a3c9ba89ca069e3dd22c3d0656e345530ea1789e9cb96f5ed65ece41719fa4bcd48
-
SSDEEP
3072:gjtwgA6UlYzZveohR9kIEpfdGZmmFVcqq0G27ZT:gjhzt3mIEpfAmmFVcqq0G27ZT
Malware Config
Targets
-
-
Target
37b552e1027ecf2bdec32cf8c538baa058928b560dd225611a4ea5deb16cb739.elf
-
Size
97KB
-
MD5
6d658881294fbbcb36dee0f4bc05c98a
-
SHA1
b772975381cb0c2b5897eac6eb1d94049719b708
-
SHA256
37b552e1027ecf2bdec32cf8c538baa058928b560dd225611a4ea5deb16cb739
-
SHA512
4f316659a7cf125852a94a61a824f819d29a8d913d656c325152588b7d0c6a3c9ba89ca069e3dd22c3d0656e345530ea1789e9cb96f5ed65ece41719fa4bcd48
-
SSDEEP
3072:gjtwgA6UlYzZveohR9kIEpfdGZmmFVcqq0G27ZT:gjhzt3mIEpfAmmFVcqq0G27ZT
Score7/10-
Changes its process name
-
Executes dropped EXE
-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
Reads system routing table
Gets active network interfaces from /proc virtual filesystem.
-