mirai | e62b41c5ea3c57dcdbcefb257f476331ae50ed1560b6d161cfac46e7219d75a2 | Triage

Submit
Reports

Overview

overview

Static

static

cb67b3d647...ad.elf

debian-9-mips

9

Sharing

General

Target

cb67b3d6475f64cfae54e4f427bbfdad.elf
Size

108KB
Sample

240422-l99d7sac9s
MD5

cb67b3d6475f64cfae54e4f427bbfdad
SHA1

06265af0f387db138cff98d44db80df0bfdb7f3f
SHA256

e62b41c5ea3c57dcdbcefb257f476331ae50ed1560b6d161cfac46e7219d75a2
SHA512

bd4a55d3728598586f6980c7cd4664074e54e1da48301aa29b01466b88802b1116fcf531cea158a217fc3b64fb8090104763c765066843bb7575292324dc6026
SSDEEP

1536:yG1wjLjW5/kAKgFtgGwKS02TPJcoPRiuauEMA7DHEvNqedlf/nloHwbO:yGKjfytgGwUCJcyRi77DCNNnloQa

Score

10^/10

mirai unstable discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

cb67b3d6475f64cfae54e4f427bbfdad.elf

Resource

debian9-mipsbe-20240226-en

debian-9-mips

7 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

UNSTABLE

Targets

- Target
  
  cb67b3d6475f64cfae54e4f427bbfdad.elf
- Size
  
  108KB
- MD5
  
  cb67b3d6475f64cfae54e4f427bbfdad
- SHA1
  
  06265af0f387db138cff98d44db80df0bfdb7f3f
- SHA256
  
  e62b41c5ea3c57dcdbcefb257f476331ae50ed1560b6d161cfac46e7219d75a2
- SHA512
  
  bd4a55d3728598586f6980c7cd4664074e54e1da48301aa29b01466b88802b1116fcf531cea158a217fc3b64fb8090104763c765066843bb7575292324dc6026
- SSDEEP
  
  1536:yG1wjLjW5/kAKgFtgGwKS02TPJcoPRiuauEMA7DHEvNqedlf/nloHwbO:yGKjfytgGwUCJcyRi77DCNNnloQa
Score

9^/10

discovery
- Contacts a large (37106) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Enumerates active TCP sockets
  Gets active TCP sockets from /proc virtual filesystem.
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

System Network Connections Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy