mirai | 1acc6fd2850bf39084454669685e98ad49bfab90fcafe1e91f49caf4af182405 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1acc6fd2850bf39084454669685e98ad49bfab90fcafe1e91f49caf4af182405.elf
Size

187KB
Sample

240609-bjbp5sbh57
MD5

5a57c37935e84a37aaa682cf4c991222
SHA1

171bf1e48e28d1c332711861dffaeabd0f014bce
SHA256

1acc6fd2850bf39084454669685e98ad49bfab90fcafe1e91f49caf4af182405
SHA512

2dac831ad836920cc5e82099934db14af33189a0d807abb8b7a094a6a3857fe92c3415d76537f0ef9b326a3adfc94bc30ab288093f4307afc2f3680b32b39ba7
SSDEEP

3072:mWSFzOpsT6FbGqEVyYaySFjiHNjgsxSuRgh86Mcmo+M/RegKmYRA:mW8iplbGLgYaySFjiHN0sRq867v+M/RX

Score

10^/10

mirai unstable discovery

Malware Config

Extracted

Family

mirai

Botnet

UNSTABLE

Targets

- Target
  
  1acc6fd2850bf39084454669685e98ad49bfab90fcafe1e91f49caf4af182405.elf
- Size
  
  187KB
- MD5
  
  5a57c37935e84a37aaa682cf4c991222
- SHA1
  
  171bf1e48e28d1c332711861dffaeabd0f014bce
- SHA256
  
  1acc6fd2850bf39084454669685e98ad49bfab90fcafe1e91f49caf4af182405
- SHA512
  
  2dac831ad836920cc5e82099934db14af33189a0d807abb8b7a094a6a3857fe92c3415d76537f0ef9b326a3adfc94bc30ab288093f4307afc2f3680b32b39ba7
- SSDEEP
  
  3072:mWSFzOpsT6FbGqEVyYaySFjiHNjgsxSuRgh86Mcmo+M/RegKmYRA:mW8iplbGLgYaySFjiHN0sRq867v+M/RX
Score

9^/10

discovery
- Contacts a large (76755) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1