mirai | 6c62a1b489409cb30e93bba0ee7042d780e22268f2e7a603fb39615aa5c19fab | Triage

Submit
Reports

Overview

overview

Static

static

7

system.x86

ubuntu-18.04-amd64

Sharing

General

Target

system.x86
Size

38KB
Sample

240315-ks1kascd3w
MD5

31fe8b316efacdc68634dfcab98a1c8b
SHA1

e6e4acdf2a3cfa8c1c3b54e4a0d1f0a85ed79d58
SHA256

6c62a1b489409cb30e93bba0ee7042d780e22268f2e7a603fb39615aa5c19fab
SHA512

111ae67570e486f97f6c61ed23741bb5864305148c994708d764fbebb1f18fb34ce98e93235c46fee42cd14be6693f013ec537c2e6e65d5b1e7fd6f9115a454f
SSDEEP

768:u4KUe7iT3shjCFgGkSilDbzEJ2UJJyq+cE6oZyIop0rGnbcuyD7U1gURS:5KB7UFg3SiBzEwyWfnZJopIGnouy81w

Score

10^/10

mirai lzrd botnet discovery linux upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

system.x86

Resource

ubuntu1804-amd64-20240226-en

mirai lzrd botnet discovery

ubuntu-18.04-amd64

6 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

- Target
  
  system.x86
- Size
  
  38KB
- MD5
  
  31fe8b316efacdc68634dfcab98a1c8b
- SHA1
  
  e6e4acdf2a3cfa8c1c3b54e4a0d1f0a85ed79d58
- SHA256
  
  6c62a1b489409cb30e93bba0ee7042d780e22268f2e7a603fb39615aa5c19fab
- SHA512
  
  111ae67570e486f97f6c61ed23741bb5864305148c994708d764fbebb1f18fb34ce98e93235c46fee42cd14be6693f013ec537c2e6e65d5b1e7fd6f9115a454f
- SSDEEP
  
  768:u4KUe7iT3shjCFgGkSilDbzEJ2UJJyq+cE6oZyIop0rGnbcuyD7U1gURS:5KB7UFg3SiBzEwyWfnZJopIGnouy81w
Score

10^/10

mirai lzrd botnet discovery
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Contacts a large (23953) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mirailzrdbotnetdiscovery

© 2018-2024

Terms | Privacy