mirai | be63a1bcbd5207557d3653428dd423ae31613c0e435e39db3ec3fb1db406ea6b | Triage

Submit
Reports

Overview

overview

Static

static

1

c16a7d61a7...e3ede4

debian-9-mips

Sharing

General

Target

c16a7d61a7d58b1da60b829652e3ede4
Size

31KB
Sample

240311-x8cjmacb9z
MD5

c16a7d61a7d58b1da60b829652e3ede4
SHA1

0eaf84129db36ac99d6ad0d0dcc3f6aeb4c0dfdd
SHA256

be63a1bcbd5207557d3653428dd423ae31613c0e435e39db3ec3fb1db406ea6b
SHA512

1388f32436a061b3dc855d4e3bbc29df6d9366fee779de38c71ce14cecf6f16566867001d1e8e001acf55cc86a04810c17e506ab367357f1477dd9f2e96571c6
SSDEEP

768:nGNYYDM+O2/fN7sUHgV87jA4JgGlzDpxYswj:nGLS2nRsUjXA4VrYXj

Score

10^/10

mirai lzrd botnet discovery

Static task

static1

Behavioral task

behavioral1

Sample

c16a7d61a7d58b1da60b829652e3ede4

Resource

debian9-mipsbe-20240226-en

mirai lzrd botnet discovery

debian-9-mips

5 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

- Target
  
  c16a7d61a7d58b1da60b829652e3ede4
- Size
  
  31KB
- MD5
  
  c16a7d61a7d58b1da60b829652e3ede4
- SHA1
  
  0eaf84129db36ac99d6ad0d0dcc3f6aeb4c0dfdd
- SHA256
  
  be63a1bcbd5207557d3653428dd423ae31613c0e435e39db3ec3fb1db406ea6b
- SHA512
  
  1388f32436a061b3dc855d4e3bbc29df6d9366fee779de38c71ce14cecf6f16566867001d1e8e001acf55cc86a04810c17e506ab367357f1477dd9f2e96571c6
- SSDEEP
  
  768:nGNYYDM+O2/fN7sUHgV87jA4JgGlzDpxYswj:nGLS2nRsUjXA4VrYXj
Score

10^/10

mirai lzrd botnet discovery
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Contacts a large (24143) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

mirailzrdbotnetdiscovery

© 2018-2024

Terms | Privacy