Overview

overview

10

Static

static

7

254c91f2bb...76.elf

ubuntu-20.04-amd64

10

Analysis

  • max time kernel
    0s
  • max time network
    147s
  • platform
    ubuntu-20.04_amd64
  • resource
    ubuntu2004-amd64-20240418-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2004-amd64-20240418-enkernel:5.4.0-169-genericlocale:en-usos:ubuntu-20.04-amd64system
  • submitted
    27-04-2024 13:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    254c91f2bb7d7346dd754de59e55f876.elf

  • Size

    38KB

  • MD5

    254c91f2bb7d7346dd754de59e55f876

  • SHA1

    1eae75275f630e9e97b94ac5c9cff0fdda8ab91c

  • SHA256

    2901973d79222f1338d03db9db64fa3ae9b61cfe77a36c709cde93a3ec07c4e2

  • SHA512

    8f005026f3c7d11dc0254e93606d78df1e218c8cce62c01be0aea521524d9069349f790439234c3100c5d87cd14cd0d8195767ba64e8948d21824c42044f08f0

  • SSDEEP

    768:U7/JSFVI5nrDwsq606qAAqfIqvQRSucRhOROnbcuyD7UJ5URV4Whh63RgaT:7Fq5nfW6qjqgQVu4h1nouy8JJ53RB

Score
10/10
miraisorabotnet

Malware Config

Extracted

Family

mirai

Botnet

SORA

Signatures

  • Mirai

    Mirai is a prevalent Linux malware infecting exposed network devices.

    botnetmirai
  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/254c91f2bb7d7346dd754de59e55f876.elf
    /tmp/254c91f2bb7d7346dd754de59e55f876.elf
    1⤵
    • Reads runtime system information
    PID:1494

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1494-1-0x0000000008048000-0x000000000805c7c8-memory.dmp
    Download