Overview

overview

10

Static

static

10

Aqua.arm7.elf

debian-12-armhf

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    Aqua.arm7.elf

  • Size

    153KB

  • Sample

    240614-tqtteaxgra

  • MD5

    13b501d6b075eb0702e1e68b32c98c1e

  • SHA1

    ebc6d2670e436eb235050119dbff0963518e2c1a

  • SHA256

    817f49470b60e838c614a0758bb631c78c2ebca1fc5f0a33e435502dcdd3ac66

  • SHA512

    5e9fa49fe6154caafbf6cb4127facd33d8b9837bdd57c0f18067c3b0a613abbcbbc7e338fbf43496463f1a11d094c09c68eb719f6a3b7d4655e32287a6338ae9

  • SSDEEP

    3072:vkM0FSN0t9T6aqWSeMlzkCJRrJWqkF5m/mCGM/9BUb7h9z+:vkM0INKt6aqWSeMl4CJWBTm/mrM/9Kto

Score
10/10
miraibotnet

Malware Config

Extracted

Family

mirai

Botnet

BOTNET

C2

boats.dogmuncher.xyz

89.190.156.145

Targets

    • Target

      Aqua.arm7.elf

    • Size

      153KB

    • MD5

      13b501d6b075eb0702e1e68b32c98c1e

    • SHA1

      ebc6d2670e436eb235050119dbff0963518e2c1a

    • SHA256

      817f49470b60e838c614a0758bb631c78c2ebca1fc5f0a33e435502dcdd3ac66

    • SHA512

      5e9fa49fe6154caafbf6cb4127facd33d8b9837bdd57c0f18067c3b0a613abbcbbc7e338fbf43496463f1a11d094c09c68eb719f6a3b7d4655e32287a6338ae9

    • SSDEEP

      3072:vkM0FSN0t9T6aqWSeMlzkCJRrJWqkF5m/mCGM/9BUb7h9z+:vkM0INKt6aqWSeMl4CJWBTm/mrM/9Kto

    Score
    7/10

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    behavioral1

MITRE ATT&CK Matrix

Tasks