General
-
Target
1584-1-0x0000000008048000-0x00000000080547a0-memory.dmp
-
Size
48KB
-
Sample
240410-jrcamsbh6y
-
MD5
892277eb8384d4e0aeb50db8b85214cc
-
SHA1
f5b785fbb5cd1f38d05caceea424f2064ec31027
-
SHA256
15b97cdaf1f0ae41cfa3cd6e779fff2f72f376bb709876eb1b4408443a9675a8
-
SHA512
2d1db9917a21e399b83159878ac6391c25205fc874cd563745768f0d3cb4740e48f357065be385ffc9231a030e5138b428234af7266cb0ed1e9b7f9689c95f37
-
SSDEEP
1536:6nJRT4QPfZfW5XTOeY3DvedAGX57/4Qw7bn2igeA:Gv4QPfZfW5XTOeoqzJ7AQwf2iQ
Malware Config
Extracted
mirai
LZRD
Targets
-
-
Target
1584-1-0x0000000008048000-0x00000000080547a0-memory.dmp
-
Size
48KB
-
MD5
892277eb8384d4e0aeb50db8b85214cc
-
SHA1
f5b785fbb5cd1f38d05caceea424f2064ec31027
-
SHA256
15b97cdaf1f0ae41cfa3cd6e779fff2f72f376bb709876eb1b4408443a9675a8
-
SHA512
2d1db9917a21e399b83159878ac6391c25205fc874cd563745768f0d3cb4740e48f357065be385ffc9231a030e5138b428234af7266cb0ed1e9b7f9689c95f37
-
SSDEEP
1536:6nJRT4QPfZfW5XTOeY3DvedAGX57/4Qw7bn2igeA:Gv4QPfZfW5XTOeoqzJ7AQwf2iQ
Score7/10-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
Enumerates running processes
Discovers information about currently running processes on the system
-
Writes file to system bin folder
-