mirai | 06d3de1f4ed49d4154d6be53c1a97fa1a7bb17de8abfba1a3feb1da8d5aec6d4 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

223d8461f4...72.elf

debian-9-armhf

9

Sharing

General

Target

223d8461f47473f5db08fd4afaadc572.elf
Size

41KB
Sample

240701-w2mkkssekd
MD5

223d8461f47473f5db08fd4afaadc572
SHA1

02c74fa47f57f5dd7ee200fbc09e0483feaa3006
SHA256

06d3de1f4ed49d4154d6be53c1a97fa1a7bb17de8abfba1a3feb1da8d5aec6d4
SHA512

f55cc66b781fa1134c53f1f584af8adab046f47804325a635fe9a623cac1e869ff95930de5e988041353ac1ed4a1e63a4bae7e481326435fe6772d0108fa449a
SSDEEP

768:N8pWwBZD5qrNVKZZjPGCo9IwxTcSPut5L9f6/NPc5bt7eLR:SWuSVKL+7hxTcaut5R6V

Score

10^/10

mirai botnet discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

223d8461f47473f5db08fd4afaadc572.elf

Resource

debian9-armhf-20240611-en

debian-9-armhf

6 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

BOTNET

C2

fortnite.cryptoinvest.black

Targets

- Target
  
  223d8461f47473f5db08fd4afaadc572.elf
- Size
  
  41KB
- MD5
  
  223d8461f47473f5db08fd4afaadc572
- SHA1
  
  02c74fa47f57f5dd7ee200fbc09e0483feaa3006
- SHA256
  
  06d3de1f4ed49d4154d6be53c1a97fa1a7bb17de8abfba1a3feb1da8d5aec6d4
- SHA512
  
  f55cc66b781fa1134c53f1f584af8adab046f47804325a635fe9a623cac1e869ff95930de5e988041353ac1ed4a1e63a4bae7e481326435fe6772d0108fa449a
- SSDEEP
  
  768:N8pWwBZD5qrNVKZZjPGCo9IwxTcSPut5L9f6/NPc5bt7eLR:SWuSVKL+7hxTcaut5R6V
Score

9^/10

discovery
- Contacts a large (76259) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy