Malware Analysis Report

2024-10-10 10:54

Sample ID 240612-3hh7davflf
Target md5
SHA256 c9d0476f8a92dff9523368c6eae0ccd52ed68221c4ae7da278ec7d9acc97f96e
Tags
botnet mirai
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

SHA256

c9d0476f8a92dff9523368c6eae0ccd52ed68221c4ae7da278ec7d9acc97f96e

Threat Level: Known bad

The file md5 was found to be: Known bad.

Malicious Activity Summary

botnet mirai

Mirai family

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2024-06-12 23:30

Signatures

Mirai family

mirai

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-12 23:30

Reported

2024-06-12 23:33

Platform

ubuntu2404-amd64-20240523-en

Max time network

149s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
NL 94.156.71.206:38241 tcp
N/A 239.255.255.250:3702 udp
US 8.8.8.8:53 location.services.mozilla.com udp
US 8.8.8.8:53 location.services.mozilla.com udp
US 8.8.8.8:53 locprod2-elb-us-west-2.prod.mozaws.net udp

Files

N/A