General
-
Target
3887ae8f8555c54cf15167fdf16e314ab35db2093364d9757525ce51f454d802.elf
-
Size
129KB
-
Sample
240528-bhmq1sgh9w
-
MD5
ca4b1ae481fa3903228f9ece7122b4d4
-
SHA1
bbfe6774ff15371d07d8fd95d90dd651f6bb218e
-
SHA256
3887ae8f8555c54cf15167fdf16e314ab35db2093364d9757525ce51f454d802
-
SHA512
e891f2657f7574e1257d7be0b460e6af147e73b98ac60d0a6fe22b9308199deb973488e670117a44f9df35c1e7cd59eaec17256ca5aba6004e40a195d42a9782
-
SSDEEP
3072:7GGZgLD3hhI2fKGHOZOSp6iKVKkSmr1zwTdWNn:ODBvcsK/mr1zwTdWNn
Behavioral task
behavioral1
Sample
3887ae8f8555c54cf15167fdf16e314ab35db2093364d9757525ce51f454d802.elf
Resource
ubuntu2004-amd64-20240508-en
Malware Config
Targets
-
-
Target
3887ae8f8555c54cf15167fdf16e314ab35db2093364d9757525ce51f454d802.elf
-
Size
129KB
-
MD5
ca4b1ae481fa3903228f9ece7122b4d4
-
SHA1
bbfe6774ff15371d07d8fd95d90dd651f6bb218e
-
SHA256
3887ae8f8555c54cf15167fdf16e314ab35db2093364d9757525ce51f454d802
-
SHA512
e891f2657f7574e1257d7be0b460e6af147e73b98ac60d0a6fe22b9308199deb973488e670117a44f9df35c1e7cd59eaec17256ca5aba6004e40a195d42a9782
-
SSDEEP
3072:7GGZgLD3hhI2fKGHOZOSp6iKVKkSmr1zwTdWNn:ODBvcsK/mr1zwTdWNn
Score7/10-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
Reads system routing table
Gets active network interfaces from /proc virtual filesystem.
-