mirai | 6b5b56fbbb2dfbd23f0c60e8b553280220238d55d334c6275610d5a9bea23d0a | Triage

Sharing

General

Target

c8460ce0c68100c64e1692e6480d0c74.bin
Size

40KB
Sample

240625-c2g6baweme
MD5

0836fb750c90dcd54223e4f795680aba
SHA1

1d16cfdb38ee688c99003e8e011910a0310d399a
SHA256

6b5b56fbbb2dfbd23f0c60e8b553280220238d55d334c6275610d5a9bea23d0a
SHA512

20a70ffc6f259b5d97c2711fadc0dc3456207127985f0b327c1af122d92104151464b96762d7a6877d724dd448ff5877c44a43e7661b24db40472224d801eb10
SSDEEP

768:N/cEapQyMSuKQQeEVrtG3YnJe0IXCfgOkuOzyEpHrS7UoPP6f+ap1:N/fiQ0uKftGoGX4gOkui5tE6fBp1

Score

10^/10

mirai mirai discovery

Malware Config

Extracted

Family

mirai

Botnet

MIRAI

Targets

- Target
  
  e23c7052cbde76794b594ca16ea9622233f04ab460fb550552a20a1430d20c2f.elf
- Size
  
  81KB
- MD5
  
  c8460ce0c68100c64e1692e6480d0c74
- SHA1
  
  c1ddc74a5f5050aebe06d4ef7b8817bb87dd8a9c
- SHA256
  
  e23c7052cbde76794b594ca16ea9622233f04ab460fb550552a20a1430d20c2f
- SHA512
  
  1ba880f7c774d0be3af01bacd76d0ce4e32970c42007e3884ad7e0afac7d64ce4fa2a263d1492f4d8fa195a2dd7863f668a52a57b8dbbda5b9039d0786944663
- SSDEEP
  
  1536:B0LNYd9T/e+mKIwb4CZhc8mXWvUOkYrF9bIgPIVvMSwbZnN:B0LNE9DZMXWvUOkYpCMSwbZnN
Score

9^/10

discovery
- Contacts a large (23992) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1