mirai | e4b97889fd03e2d12d395cee75c7316cd655689cff616e8ae64f72759322b00c | Triage

Submit
Reports

Overview

overview

Static

static

1fddd8b0aa...kes118

ubuntu-18.04-amd64

9

Sharing

General

Target

1fddd8b0aadb0a02ea890f698caff89c_JaffaCakes118
Size

60KB
Sample

240507-h6t9bshe42
MD5

1fddd8b0aadb0a02ea890f698caff89c
SHA1

211110ccd5195d8eb3124899b656774741e91429
SHA256

e4b97889fd03e2d12d395cee75c7316cd655689cff616e8ae64f72759322b00c
SHA512

aa5b1109741c9983d7bcc15e32fbacf36e4d011316bb19ec282703435133a63117d59aae1e32936e32577baeccd9488d41f3b6c7a618d93c4458e7185d5cbf1a
SSDEEP

1536:ItLBpV4/JSWE/h8RAv+QvQpiIXRySsuZG:YBpV4/JSWE/hgARQpd8V

Score

10^/10

mirai lzrd discovery linux

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

1fddd8b0aadb0a02ea890f698caff89c_JaffaCakes118

Resource

ubuntu1804-amd64-20240226-en

ubuntu-18.04-amd64

5 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

- Target
  
  1fddd8b0aadb0a02ea890f698caff89c_JaffaCakes118
- Size
  
  60KB
- MD5
  
  1fddd8b0aadb0a02ea890f698caff89c
- SHA1
  
  211110ccd5195d8eb3124899b656774741e91429
- SHA256
  
  e4b97889fd03e2d12d395cee75c7316cd655689cff616e8ae64f72759322b00c
- SHA512
  
  aa5b1109741c9983d7bcc15e32fbacf36e4d011316bb19ec282703435133a63117d59aae1e32936e32577baeccd9488d41f3b6c7a618d93c4458e7185d5cbf1a
- SSDEEP
  
  1536:ItLBpV4/JSWE/h8RAv+QvQpiIXRySsuZG:YBpV4/JSWE/hgARQpd8V
Score

9^/10

discovery
- Contacts a large (103431) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy