mirai | 1d2eac628d3c3544e3eb9801dbc3a03777383689011e62fb824ca5d13cedb815 | Triage

Sharing

General

Target

cb01e0e2fdde2cd63336c138b3f8db38_JaffaCakes118
Size

81KB
Sample

240405-e8hrjacg83
MD5

cb01e0e2fdde2cd63336c138b3f8db38
SHA1

c38583eee917b08b527fedd7ae48aca1248eadd6
SHA256

1d2eac628d3c3544e3eb9801dbc3a03777383689011e62fb824ca5d13cedb815
SHA512

f3078914a8424766cb3216df54b20c37e42897b3d15a38628554492ac1f63a4fb168eef64d546a24dc7d11b0476ac9edd58d40348bb26af8a99172ae31371979
SSDEEP

1536:uJw/ov6TKGT0aUowLrzY338wCmmpmB5xRQdkAippV25ttr+8zXcAokAja:uJwc3WMKGmAgpV25ttfsAX

Score

10^/10

mirai mirai

Malware Config

Extracted

Family

mirai

Botnet

MIRAI

Targets

- Target
  
  cb01e0e2fdde2cd63336c138b3f8db38_JaffaCakes118
- Size
  
  81KB
- MD5
  
  cb01e0e2fdde2cd63336c138b3f8db38
- SHA1
  
  c38583eee917b08b527fedd7ae48aca1248eadd6
- SHA256
  
  1d2eac628d3c3544e3eb9801dbc3a03777383689011e62fb824ca5d13cedb815
- SHA512
  
  f3078914a8424766cb3216df54b20c37e42897b3d15a38628554492ac1f63a4fb168eef64d546a24dc7d11b0476ac9edd58d40348bb26af8a99172ae31371979
- SSDEEP
  
  1536:uJw/ov6TKGT0aUowLrzY338wCmmpmB5xRQdkAippV25ttr+8zXcAokAja:uJwc3WMKGmAgpV25ttfsAX
Score

7^/10
- Deletes itself
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1