mirai | 0526b4b30ceda688d92282e0a2a55d17e3309e9a9d7a2b9d5c46adef04d56c8a | Triage

Submit
Reports

Overview

overview

Static

static

7

e0db9b215d...kes118

ubuntu-18.04-amd64

Sharing

General

Target

e0db9b215d7472e80bb410f7a10414d9_JaffaCakes118
Size

28KB
Sample

240406-k3jdrseh5x
MD5

e0db9b215d7472e80bb410f7a10414d9
SHA1

6791760dbf0739e933fbb5581b73ce45639062cb
SHA256

0526b4b30ceda688d92282e0a2a55d17e3309e9a9d7a2b9d5c46adef04d56c8a
SHA512

6e15f26feaa9f9021a931fc4c9b3df8b8c2d7e786a63d1aa6bdca8789ce92f2276ce541a7f2b07454672d46a91ea671249bc58bb2d9b212f6e07012e26111e0a
SSDEEP

768:AJ55ogTmYr72RTuM3WxHaG2Lo08nbcuyD7UHQRjQW:o5oZYr72sXB2L18nouy8HyJ

Score

10^/10

mirai unst botnet discovery linux upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e0db9b215d7472e80bb410f7a10414d9_JaffaCakes118

Resource

ubuntu1804-amd64-20240226-en

mirai unst botnet discovery

ubuntu-18.04-amd64

6 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

UNST

Targets

- Target
  
  e0db9b215d7472e80bb410f7a10414d9_JaffaCakes118
- Size
  
  28KB
- MD5
  
  e0db9b215d7472e80bb410f7a10414d9
- SHA1
  
  6791760dbf0739e933fbb5581b73ce45639062cb
- SHA256
  
  0526b4b30ceda688d92282e0a2a55d17e3309e9a9d7a2b9d5c46adef04d56c8a
- SHA512
  
  6e15f26feaa9f9021a931fc4c9b3df8b8c2d7e786a63d1aa6bdca8789ce92f2276ce541a7f2b07454672d46a91ea671249bc58bb2d9b212f6e07012e26111e0a
- SSDEEP
  
  768:AJ55ogTmYr72RTuM3WxHaG2Lo08nbcuyD7UHQRjQW:o5oZYr72sXB2L18nouy8HyJ
Score

10^/10

mirai unst botnet discovery
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Contacts a large (20327) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

miraiunstbotnetdiscovery

© 2018-2024

Terms | Privacy