General
-
Target
SecuriteInfo.com.Linux.Siggen.9999.22447.5558.elf
-
Size
26KB
-
Sample
240423-bwt29aba61
-
MD5
59d02fcc4d04ee30f75c7a4f9edb0d4f
-
SHA1
fe9711a1a60f70a0d679272809d1935338ad679d
-
SHA256
92e584ed36b33513d228f5facba9ef5f7f9ade043eb6e9310855f615b3fde112
-
SHA512
02ed6a9effdfb44fe345ed3f2bed1bf13ab6f2b92c2c9e6003dfd75f8c537880252ebef0eb51cd578ebbb391b7506a3d5dcb3c6e05962d4084280aba2da91b0a
-
SSDEEP
768:RRTirMYkp/fMFTbZBmDmt9l6oChFs3UozhC:TMEmhwroaIzhC
Malware Config
Extracted
mirai
LZRD
Targets
-
-
Target
SecuriteInfo.com.Linux.Siggen.9999.22447.5558.elf
-
Size
26KB
-
MD5
59d02fcc4d04ee30f75c7a4f9edb0d4f
-
SHA1
fe9711a1a60f70a0d679272809d1935338ad679d
-
SHA256
92e584ed36b33513d228f5facba9ef5f7f9ade043eb6e9310855f615b3fde112
-
SHA512
02ed6a9effdfb44fe345ed3f2bed1bf13ab6f2b92c2c9e6003dfd75f8c537880252ebef0eb51cd578ebbb391b7506a3d5dcb3c6e05962d4084280aba2da91b0a
-
SSDEEP
768:RRTirMYkp/fMFTbZBmDmt9l6oChFs3UozhC:TMEmhwroaIzhC
-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
Enumerates running processes
Discovers information about currently running processes on the system
-
Writes file to system bin folder
-