Analysis

  • max time kernel
    0s
  • platform
    debian-9_mipsel
  • resource
    debian9-mipsel-20240226-en
  • resource tags

    arch:mipselimage:debian9-mipsel-20240226-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
  • submitted
    10-04-2024 03:00

General

  • Target

    bd31a365a49ee1811292c68c58173efd6488cf0c0484e4a32aa12366f159d4ed.elf

  • Size

    29KB

  • MD5

    15cd733a81bd5dc555fe07879a3f4ef5

  • SHA1

    be50b17986e31309b50fb7ad46da778fad44cbe1

  • SHA256

    bd31a365a49ee1811292c68c58173efd6488cf0c0484e4a32aa12366f159d4ed

  • SHA512

    5cd5009a0b1bbd6701d8f879a14bf30af573923510ece5f4d6c2b5c7aae84dffd4c906923b69771c6f0e7d2760949e614cc6cf7ee355ac5ef80fa8ad57e83e15

  • SSDEEP

    384:o8pVWtmRsLYEpB6V8S628Ft+ykZw2ZcU1/IIVBBuuC8hJ8TYTap8RY+RfTWVH/UA:9MYHb62I2eU9IITA3c3TM8NRfTWuLZWj

Score
10/10

Malware Config

Extracted

Family

mirai

Botnet

SORA

Signatures

  • Mirai

    Mirai is a prevalent Linux malware infecting exposed network devices.

Processes

  • /tmp/bd31a365a49ee1811292c68c58173efd6488cf0c0484e4a32aa12366f159d4ed.elf
    /tmp/bd31a365a49ee1811292c68c58173efd6488cf0c0484e4a32aa12366f159d4ed.elf
    1⤵
      PID:707

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/707-1-0x00400000-0x00455d70-memory.dmp