General
-
Target
e47c0cc3b00de906596cf4e63820d391d4e0e2ccc78a2c4f60cfe8d1991a345d.elf
-
Size
155KB
-
Sample
240402-btybwscf8s
-
MD5
6153fdb5e5899070229f1c544ab3d291
-
SHA1
cc61abc7d93b729f284efd418dfc815deaef2ba9
-
SHA256
e47c0cc3b00de906596cf4e63820d391d4e0e2ccc78a2c4f60cfe8d1991a345d
-
SHA512
cf66e060c87cf967af1f134a20668b3f9aabf2b27f3551c33c529e93e9815dfdbd86eef2435a5c6251a30daea1ecae45f19cd11616729b5880ec65e174971141
-
SSDEEP
3072:B7esBFP23rWfOB7ZOOyGgWKmrThPaLEne7rNb:1euCloGgrmrThPaLEne7rNb
Behavioral task
behavioral1
Sample
e47c0cc3b00de906596cf4e63820d391d4e0e2ccc78a2c4f60cfe8d1991a345d.elf
Resource
debian9-mipsbe-20240226-en
Malware Config
Targets
-
-
Target
e47c0cc3b00de906596cf4e63820d391d4e0e2ccc78a2c4f60cfe8d1991a345d.elf
-
Size
155KB
-
MD5
6153fdb5e5899070229f1c544ab3d291
-
SHA1
cc61abc7d93b729f284efd418dfc815deaef2ba9
-
SHA256
e47c0cc3b00de906596cf4e63820d391d4e0e2ccc78a2c4f60cfe8d1991a345d
-
SHA512
cf66e060c87cf967af1f134a20668b3f9aabf2b27f3551c33c529e93e9815dfdbd86eef2435a5c6251a30daea1ecae45f19cd11616729b5880ec65e174971141
-
SSDEEP
3072:B7esBFP23rWfOB7ZOOyGgWKmrThPaLEne7rNb:1euCloGgrmrThPaLEne7rNb
Score7/10-
Changes its process name
-
Executes dropped EXE
-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
Reads system routing table
Gets active network interfaces from /proc virtual filesystem.
-