mirai | 7452a8cd6d737917f4d19adcef67e8cc47b643da9d703a37fb2af6644a78edc1 | Triage

Submit
Reports

Overview

overview

Static

static

f3f909238b...66.elf

debian-9-mipsel

7

Sharing

General

Target

f3f909238b26928d0587e272fc702866.elf
Size

97KB
Sample

240419-s9wxfagc58
MD5

f3f909238b26928d0587e272fc702866
SHA1

aa2a80dc9db8553ea5e17958130662955ade4e10
SHA256

7452a8cd6d737917f4d19adcef67e8cc47b643da9d703a37fb2af6644a78edc1
SHA512

2b09a7fd4391dd9bc48314eaaa75a40eabe8b7332099da2525193cb5f79a0b8d654de0d668fc35806f8fe45bdfa21095f1411c9fe29cbf85eb605bee6d154085
SSDEEP

1536:8wPBYpO2CUIO2/M+LIjrqr1oNgfR34b7ZZ/myEhmJ:8yBYpO2rI/u2R3C7gcJ

Score

10^/10

mirai mirai evasion

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f3f909238b26928d0587e272fc702866.elf

Resource

debian9-mipsel-20240226-en

debian-9-mipsel

8 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

MIRAI

Targets

- Target
  
  f3f909238b26928d0587e272fc702866.elf
- Size
  
  97KB
- MD5
  
  f3f909238b26928d0587e272fc702866
- SHA1
  
  aa2a80dc9db8553ea5e17958130662955ade4e10
- SHA256
  
  7452a8cd6d737917f4d19adcef67e8cc47b643da9d703a37fb2af6644a78edc1
- SHA512
  
  2b09a7fd4391dd9bc48314eaaa75a40eabe8b7332099da2525193cb5f79a0b8d654de0d668fc35806f8fe45bdfa21095f1411c9fe29cbf85eb605bee6d154085
- SSDEEP
  
  1536:8wPBYpO2CUIO2/M+LIjrqr1oNgfR34b7ZZ/myEhmJ:8yBYpO2rI/u2R3C7gcJ
Score

7^/10

evasion
- Changes its process name
- Deletes Audit logs
  Deletes logs related to the Linux Audit framework.
  evasion
- Deletes itself
- Deletes system logs
  Deletes log file which contains global system messages. Adversaries may delete system logs to minimize their footprint.
  evasion
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Deletes log files
  Deletes log files on the system.
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Indicator Removal

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy