General
-
Target
438f36c1a030551dfbe32c5a8780104e72cc36cf642eebaefce52742583aa2f5.elf
-
Size
52KB
-
Sample
240629-bkxc8sxcqb
-
MD5
a4a7c4ad686852f244b27591f611c6f6
-
SHA1
c811c084aa836131b3c653da0145f2073baa9615
-
SHA256
438f36c1a030551dfbe32c5a8780104e72cc36cf642eebaefce52742583aa2f5
-
SHA512
980aeac3f67f9e21d374d6724f88f145dc9f5ca05fd8f74471d89050a930ea1afef7bd77a251a305ca25567f0968326b2c38e66b1ebc81ed13fbc4efa14eb90f
-
SSDEEP
768:3IGvGNSklCZ8o4Ryr68SJEjDsli5qw6AFL7aOVJVtHL45A:3hvQo4u6J5w6yLLR8
Behavioral task
behavioral1
Sample
438f36c1a030551dfbe32c5a8780104e72cc36cf642eebaefce52742583aa2f5.elf
Resource
ubuntu2204-amd64-20240611-en
Malware Config
Extracted
mirai
MIRAI
Targets
-
-
Target
438f36c1a030551dfbe32c5a8780104e72cc36cf642eebaefce52742583aa2f5.elf
-
Size
52KB
-
MD5
a4a7c4ad686852f244b27591f611c6f6
-
SHA1
c811c084aa836131b3c653da0145f2073baa9615
-
SHA256
438f36c1a030551dfbe32c5a8780104e72cc36cf642eebaefce52742583aa2f5
-
SHA512
980aeac3f67f9e21d374d6724f88f145dc9f5ca05fd8f74471d89050a930ea1afef7bd77a251a305ca25567f0968326b2c38e66b1ebc81ed13fbc4efa14eb90f
-
SSDEEP
768:3IGvGNSklCZ8o4Ryr68SJEjDsli5qw6AFL7aOVJVtHL45A:3hvQo4u6J5w6yLLR8
Score7/10-
Deletes itself
-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
Enumerates active TCP sockets
Gets active TCP sockets from /proc virtual filesystem.
-