977b017d230eb05cd8594a216d9563406c4b440b731e9a91919b712359dabc1e | Triage

Sharing

General

Target

7472de67440c495a36276ab12000bdea.elf
Size

47KB
Sample

240704-mm9l5awbrm
MD5

7472de67440c495a36276ab12000bdea
SHA1

8a67ea85e5f6c590d2060413a9764a78ce851c66
SHA256

977b017d230eb05cd8594a216d9563406c4b440b731e9a91919b712359dabc1e
SHA512

d5bc2df12180b90ad0e07f50d7b54add57e929fa50a0a75884ca79f139bd3624a6902df90c5c87db6028fcccbc0e4ead88c99ad83c8eb13905be8509e7dfca12
SSDEEP

768:5taWbJYA7w7gRR5sKnPWsBwRQ9Y4sSLYoZwkzCB9NqosbK//m1dn:58gJD7VPWewRYY5kzCBDzOHn

Score

7^/10

Malware Config

Targets

- Target
  
  7472de67440c495a36276ab12000bdea.elf
- Size
  
  47KB
- MD5
  
  7472de67440c495a36276ab12000bdea
- SHA1
  
  8a67ea85e5f6c590d2060413a9764a78ce851c66
- SHA256
  
  977b017d230eb05cd8594a216d9563406c4b440b731e9a91919b712359dabc1e
- SHA512
  
  d5bc2df12180b90ad0e07f50d7b54add57e929fa50a0a75884ca79f139bd3624a6902df90c5c87db6028fcccbc0e4ead88c99ad83c8eb13905be8509e7dfca12
- SSDEEP
  
  768:5taWbJYA7w7gRR5sKnPWsBwRQ9Y4sSLYoZwkzCB9NqosbK//m1dn:58gJD7VPWewRYY5kzCBDzOHn
Score

7^/10
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Renames itself
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1