General
-
Target
arm
-
Size
77KB
-
Sample
240419-sx5c2sgg7y
-
MD5
8236382015d64f53bb7bf407dafc0892
-
SHA1
06fa7cd799751a8b6970f7a3954652e84978d970
-
SHA256
66645f119cbaa36252f66cb8722d746a473373fbd2b950820eae410fba51e069
-
SHA512
cd5cd9ffae4cff12ed9727fc85705802f3f7ed41c6b7fc60809afeea2410de1708ea01bf19eb558ac60e1f143c5aa8a2b999b5c98f32f09af3335ea80e166fd6
-
SSDEEP
1536:y4D7ee8e0vbIOu0dms/pLF+O3X7GTZNcNWtzqqPe3vM8:y4D7me0LnHp3X7GTZNcmGM8
Malware Config
Extracted
mirai
MIRAI
Targets
-
-
Target
arm
-
Size
77KB
-
MD5
8236382015d64f53bb7bf407dafc0892
-
SHA1
06fa7cd799751a8b6970f7a3954652e84978d970
-
SHA256
66645f119cbaa36252f66cb8722d746a473373fbd2b950820eae410fba51e069
-
SHA512
cd5cd9ffae4cff12ed9727fc85705802f3f7ed41c6b7fc60809afeea2410de1708ea01bf19eb558ac60e1f143c5aa8a2b999b5c98f32f09af3335ea80e166fd6
-
SSDEEP
1536:y4D7ee8e0vbIOu0dms/pLF+O3X7GTZNcNWtzqqPe3vM8:y4D7me0LnHp3X7GTZNcmGM8
Score7/10-
Changes its process name
-
Deletes Audit logs
Deletes logs related to the Linux Audit framework.
-
Deletes itself
-
Deletes system logs
Deletes log file which contains global system messages. Adversaries may delete system logs to minimize their footprint.
-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
Deletes log files
Deletes log files on the system.
-
Enumerates running processes
Discovers information about currently running processes on the system
-