mirai | f107474c06b4bfc03d20026182fe7130937d8a4bf2563fba23ab8a008693fc3b | Triage

Sharing

General

Target

f107474c06b4bfc03d20026182fe7130937d8a4bf2563fba23ab8a008693fc3b.elf
Size

73KB
Sample

240609-lttc2sgh8z
MD5

ddf1007b4935033ac40d85944132e2ae
SHA1

1791399aabba49c36fc30e5c86badd8759db0126
SHA256

f107474c06b4bfc03d20026182fe7130937d8a4bf2563fba23ab8a008693fc3b
SHA512

2130b44e9949abe22ab0da7ea4ff6da371b051fd86118c56b1dc391f70c23a0d7fa148e1a438b431aa5cddb8f8019a8e45f15cb9cd338665a5bd3370284766e1
SSDEEP

1536:gOtUzBY6Q7Kc27c5qHHBn6GX5lMLhToXFHeZb1cNxJpQ7E8ZIrzlcFveAzIz:lt0Yj327c5qHHBn6GX5lMLhsXNwbWNxa

Score

10^/10

mirai mirai discovery

Malware Config

Extracted

Family

mirai

Botnet

MIRAI

Targets

- Target
  
  f107474c06b4bfc03d20026182fe7130937d8a4bf2563fba23ab8a008693fc3b.elf
- Size
  
  73KB
- MD5
  
  ddf1007b4935033ac40d85944132e2ae
- SHA1
  
  1791399aabba49c36fc30e5c86badd8759db0126
- SHA256
  
  f107474c06b4bfc03d20026182fe7130937d8a4bf2563fba23ab8a008693fc3b
- SHA512
  
  2130b44e9949abe22ab0da7ea4ff6da371b051fd86118c56b1dc391f70c23a0d7fa148e1a438b431aa5cddb8f8019a8e45f15cb9cd338665a5bd3370284766e1
- SSDEEP
  
  1536:gOtUzBY6Q7Kc27c5qHHBn6GX5lMLhToXFHeZb1cNxJpQ7E8ZIrzlcFveAzIz:lt0Yj327c5qHHBn6GX5lMLhsXNwbWNxa
Score

9^/10

discovery
- Contacts a large (20442) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1