mirai | 0de8a57175f12b9715dec559b8f14817d155ce4246ba3ac40f62fe94c306199c | Triage

Sharing

General

Target

4824565f0f4f86bf8e0aa4e643644709_JaffaCakes118
Size

48KB
Sample

240515-1e7pfsdd73
MD5

4824565f0f4f86bf8e0aa4e643644709
SHA1

4165ee36a8cc93973ddc3fc61dabdd8d9d5d6045
SHA256

0de8a57175f12b9715dec559b8f14817d155ce4246ba3ac40f62fe94c306199c
SHA512

b0545b2e6ab2c324b28dca2062f5b63704d113675fcb0125fd2fe51de8c6b73d45dad174458848a3adfacaa68781c9f854ab589a4713227c4d387db7113541a3
SSDEEP

768:ZpkWWzNonwOTBgB6bP/rOzbFKku3WOrdKJcszGAcIo:ZkNonwOTBcWP/rOzbFVaWOxKJcsSAc

Score

10^/10

mirai mirai linux

Malware Config

Extracted

Family

mirai

Botnet

MIRAI

Targets

- Target
  
  4824565f0f4f86bf8e0aa4e643644709_JaffaCakes118
- Size
  
  48KB
- MD5
  
  4824565f0f4f86bf8e0aa4e643644709
- SHA1
  
  4165ee36a8cc93973ddc3fc61dabdd8d9d5d6045
- SHA256
  
  0de8a57175f12b9715dec559b8f14817d155ce4246ba3ac40f62fe94c306199c
- SHA512
  
  b0545b2e6ab2c324b28dca2062f5b63704d113675fcb0125fd2fe51de8c6b73d45dad174458848a3adfacaa68781c9f854ab589a4713227c4d387db7113541a3
- SSDEEP
  
  768:ZpkWWzNonwOTBgB6bP/rOzbFKku3WOrdKJcszGAcIo:ZkNonwOTBcWP/rOzbFVaWOxKJcsSAc
Score

7^/10
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1