General
-
Target
41b8e5bf80bbef7fdda33e8973c43cc6dbb529a9fd3d8dffb6ede46f8be8a60a.elf
-
Size
32KB
-
Sample
240223-fqeslabe21
-
MD5
9891e3427da372b839289a20d81bb318
-
SHA1
859a282fb61302b2335bc4f46ec17fa89066e28c
-
SHA256
41b8e5bf80bbef7fdda33e8973c43cc6dbb529a9fd3d8dffb6ede46f8be8a60a
-
SHA512
f46be0a3eb5dd4a03e6ee7d952b730f8c946b2b66598d74c6c10dbf26e7988ce39c70795ef574ad68ff62e62b07c0238b94c47145a17009fd0e3088891bcfb55
-
SSDEEP
768:1CMOseTJUbXEXC28HVW1154YDRZmKqUiJgGlzDpbuR1JH:I6MC24E1g2mKqUmVJup
Malware Config
Extracted
mirai
MIRAI
Targets
-
-
Target
41b8e5bf80bbef7fdda33e8973c43cc6dbb529a9fd3d8dffb6ede46f8be8a60a.elf
-
Size
32KB
-
MD5
9891e3427da372b839289a20d81bb318
-
SHA1
859a282fb61302b2335bc4f46ec17fa89066e28c
-
SHA256
41b8e5bf80bbef7fdda33e8973c43cc6dbb529a9fd3d8dffb6ede46f8be8a60a
-
SHA512
f46be0a3eb5dd4a03e6ee7d952b730f8c946b2b66598d74c6c10dbf26e7988ce39c70795ef574ad68ff62e62b07c0238b94c47145a17009fd0e3088891bcfb55
-
SSDEEP
768:1CMOseTJUbXEXC28HVW1154YDRZmKqUiJgGlzDpbuR1JH:I6MC24E1g2mKqUmVJup
Score10/10-
Mirai
Mirai is a prevalent Linux malware infecting exposed network devices.
-
Changes its process name
-
Deletes Audit logs
Deletes logs related to the Linux Audit framework.
-
Deletes itself
-
Deletes system logs
Deletes log file which contains global system messages. Adversaries may delete system logs to minimize their footprint.
-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
Deletes log files
Deletes log files on the system.
-