mirai | 35b18cfa90e951f1e9216e64625a436f959cb325387fdb5a93ce4c397e75616e | Triage

Sharing

General

Target

5848e14b9454874b3af3551abe327ad4_JaffaCakes118
Size

66KB
Sample

240519-drl7ysfg86
MD5

5848e14b9454874b3af3551abe327ad4
SHA1

c091e05afb074fb882e0fd323b7493b7fce7b10b
SHA256

35b18cfa90e951f1e9216e64625a436f959cb325387fdb5a93ce4c397e75616e
SHA512

4c44547c053a8b1e447fa4da2e48a636863b637074e1b5e4eceb677b35e04ce2777f4d31b4897a75923c5f8b021613d79d19d38bec81b56ffcbaa922c6da20c6
SSDEEP

768:Ui781/+nzbAEUJhQyqTVc7HYCqSfuSbQsI892OPQHjlrkHuLwCVy/Jx+5H8hG1rt:576WlUPQ7CqcbhYOPEjtBeZW+06kfl

Score

10^/10

mirai mirai discovery

Malware Config

Extracted

Family

mirai

Botnet

MIRAI

Targets

- Target
  
  5848e14b9454874b3af3551abe327ad4_JaffaCakes118
- Size
  
  66KB
- MD5
  
  5848e14b9454874b3af3551abe327ad4
- SHA1
  
  c091e05afb074fb882e0fd323b7493b7fce7b10b
- SHA256
  
  35b18cfa90e951f1e9216e64625a436f959cb325387fdb5a93ce4c397e75616e
- SHA512
  
  4c44547c053a8b1e447fa4da2e48a636863b637074e1b5e4eceb677b35e04ce2777f4d31b4897a75923c5f8b021613d79d19d38bec81b56ffcbaa922c6da20c6
- SSDEEP
  
  768:Ui781/+nzbAEUJhQyqTVc7HYCqSfuSbQsI892OPQHjlrkHuLwCVy/Jx+5H8hG1rt:576WlUPQ7CqcbhYOPEjtBeZW+06kfl
Score

9^/10

discovery
- Contacts a large (41207) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1