General
-
Target
620c15ed6f68b42d2a3b708c340d9ccff7a9217f49ff11effabad58821c7c08a.elf
-
Size
29KB
-
Sample
240423-brd58sah5s
-
MD5
d15e0d59fb573bd3fed0126bf434b982
-
SHA1
01a748696ac1eb2b85a8297ead29af408ef3f017
-
SHA256
620c15ed6f68b42d2a3b708c340d9ccff7a9217f49ff11effabad58821c7c08a
-
SHA512
983d42704a79f664d44c6712bb8dc608a29a96cf1b0211dd9c4cc6a7ccd59c04c10f57a077033ca53df08cde90efe11957ee721c4d4a5388c27a695dc31ae7d0
-
SSDEEP
768:5KpROfidrsa6Uq4sn9Fp1Sr+OqDUM8sH9o+eI:5Kpk6doaxun0+OqD/8s2+V
Malware Config
Extracted
mirai
spagetti.openproxylist.info
Targets
-
-
Target
620c15ed6f68b42d2a3b708c340d9ccff7a9217f49ff11effabad58821c7c08a.elf
-
Size
29KB
-
MD5
d15e0d59fb573bd3fed0126bf434b982
-
SHA1
01a748696ac1eb2b85a8297ead29af408ef3f017
-
SHA256
620c15ed6f68b42d2a3b708c340d9ccff7a9217f49ff11effabad58821c7c08a
-
SHA512
983d42704a79f664d44c6712bb8dc608a29a96cf1b0211dd9c4cc6a7ccd59c04c10f57a077033ca53df08cde90efe11957ee721c4d4a5388c27a695dc31ae7d0
-
SSDEEP
768:5KpROfidrsa6Uq4sn9Fp1Sr+OqDUM8sH9o+eI:5Kpk6doaxun0+OqD/8s2+V
-
Deletes itself
-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
Traces itself
Traces itself to prevent debugging attempts
-
Writes file to system bin folder
-