General
-
Target
653-1-0x00008000-0x00026464-memory.dmp
-
Size
76KB
-
Sample
240327-nj6azaeb61
-
MD5
d7176b8ef72b772d782cbb5debdf6235
-
SHA1
0163852b5bad9dceb331758c703c90b338bab706
-
SHA256
190b8bb9452a8e70c1110cb4a6bef092ec424f7aed027d7a401a36e343133ed0
-
SHA512
db7210122ed7e589b8fbad818a32cdeba8cf1c02bf2d3a17dc7e9da02a62799518811ad934af485429fde321d0fcca7d448b2742659e023aa1853f1210a33979
-
SSDEEP
1536:TJnF9sFw8gu6+wyKaw1KpIPrbvr/6Ra1styKtI8ll5BihwlTQP+8of:RowpuQyNSG2eRa1styK9flTQPHo
Malware Config
Extracted
mirai
LZRD
Targets
-
-
Target
653-1-0x00008000-0x00026464-memory.dmp
-
Size
76KB
-
MD5
d7176b8ef72b772d782cbb5debdf6235
-
SHA1
0163852b5bad9dceb331758c703c90b338bab706
-
SHA256
190b8bb9452a8e70c1110cb4a6bef092ec424f7aed027d7a401a36e343133ed0
-
SHA512
db7210122ed7e589b8fbad818a32cdeba8cf1c02bf2d3a17dc7e9da02a62799518811ad934af485429fde321d0fcca7d448b2742659e023aa1853f1210a33979
-
SSDEEP
1536:TJnF9sFw8gu6+wyKaw1KpIPrbvr/6Ra1styKtI8ll5BihwlTQP+8of:RowpuQyNSG2eRa1styK9flTQPHo
Score7/10-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
Enumerates running processes
Discovers information about currently running processes on the system
-
Writes file to system bin folder
-