mirai | b8af1935f8dc13ead1449a42782c65f9424788ef540ba40ab70e11f2314cc74d | Triage

Sharing

General

Target

248c0484ab7f48f3bb5a4b106b1b7208_JaffaCakes118
Size

70KB
Sample

240508-m4pchshb4y
MD5

248c0484ab7f48f3bb5a4b106b1b7208
SHA1

a397c692ae5e1b71820dab8b64275d4056a9e2de
SHA256

b8af1935f8dc13ead1449a42782c65f9424788ef540ba40ab70e11f2314cc74d
SHA512

530f70b8906c41e5556880675d3842bce1724604c1fe877b20e400c8c43e29a5300a666ab5b064dd63e15eebbd5b27c67dcc1787d6e5f1b68ee009b1165cec5f
SSDEEP

1536:GbtexU5L9XouIRhb96pUQzXtwavaJ3V8OHxouJeZWDFI8MM:GbtexU0r8QCKw2FbV

Score

10^/10

mirai lzrd discovery

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

- Target
  
  248c0484ab7f48f3bb5a4b106b1b7208_JaffaCakes118
- Size
  
  70KB
- MD5
  
  248c0484ab7f48f3bb5a4b106b1b7208
- SHA1
  
  a397c692ae5e1b71820dab8b64275d4056a9e2de
- SHA256
  
  b8af1935f8dc13ead1449a42782c65f9424788ef540ba40ab70e11f2314cc74d
- SHA512
  
  530f70b8906c41e5556880675d3842bce1724604c1fe877b20e400c8c43e29a5300a666ab5b064dd63e15eebbd5b27c67dcc1787d6e5f1b68ee009b1165cec5f
- SSDEEP
  
  1536:GbtexU5L9XouIRhb96pUQzXtwavaJ3V8OHxouJeZWDFI8MM:GbtexU0r8QCKw2FbV
Score

9^/10

discovery
- Contacts a large (20427) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1