Analysis

  • max time kernel
    0s
  • max time network
    132s
  • platform
    ubuntu-20.04_amd64
  • resource
    ubuntu2004-amd64-20240508-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2004-amd64-20240508-enkernel:5.4.0-169-genericlocale:en-usos:ubuntu-20.04-amd64system
  • submitted
    01-06-2024 19:44

General

  • Target

    430f158d155ee04ba62c5bbe2845d5a8b19afd194aa8ddb10a69bb0c2b819449.elf

  • Size

    29KB

  • MD5

    09ba787f7ccf85ceb29a401eddb1ce04

  • SHA1

    52cc0932a40017e7505aac83d8c3611dd5e0d8f6

  • SHA256

    430f158d155ee04ba62c5bbe2845d5a8b19afd194aa8ddb10a69bb0c2b819449

  • SHA512

    7a0f0f50c0d9a47b732ca3980eaefe84207b8c3012de07bd16200176b40bf44f1bdc4b6054444e59f1dbdb9524801a89bd3f9d3f6a51f533c33200be20ee4e0b

  • SSDEEP

    384:MM8HrPrrTmwuMXRU6Owh3It48nZICaafEA5h9MZAJhXs5OmgPUr0vXxVNVqo3MY6:qnSWRcKmMAKMhoO7Pukq8MYQJtiE

Score
10/10

Malware Config

Extracted

Family

mirai

Botnet

WICKED

C2

178.215.236.209

Signatures

  • Mirai

    Mirai is a prevalent Linux malware infecting exposed network devices.

Processes

  • /tmp/430f158d155ee04ba62c5bbe2845d5a8b19afd194aa8ddb10a69bb0c2b819449.elf
    /tmp/430f158d155ee04ba62c5bbe2845d5a8b19afd194aa8ddb10a69bb0c2b819449.elf
    1⤵
      PID:1400

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1400-1-0x0000000008048000-0x0000000008058900-memory.dmp