echobot | 5f55f8a9b2b425ed3607898eab331e3c397421375284970da25f89c118198cb4 | Triage

Submit
Reports

Overview

overview

Static

static

jade.mpsl.elf

debian-12-mipsel

9

Sharing

General

Target

jade.mpsl.elf
Size

144KB
Sample

240712-qacy6svbml
MD5

2e99f861455d81419eb6ae903eb3d235
SHA1

3ddcfa7e58f91b1f6927c552cc28884b4ffd7cc4
SHA256

5f55f8a9b2b425ed3607898eab331e3c397421375284970da25f89c118198cb4
SHA512

c07b9b34676cae5cc3c4728f0271fc59bdc718366b5001b5702f48f82780f377a8e3d9415acf794b42df2ad6d0c3e40894591ee691b6d5bdf313fd76df620a64
SSDEEP

3072:/NgPgHgvgo1TNRtRSR5RtR7fKDzOZWJihixOWPKTksFyQ9mIP:uoAIUZRtRSR5RtRPWDbPKTcsmIP

Score

10^/10

echobot mirai discovery

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

jade.mpsl.elf

Resource

debian12-mipsel-20240418-en

debian-12-mipsel

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  jade.mpsl.elf
- Size
  
  144KB
- MD5
  
  2e99f861455d81419eb6ae903eb3d235
- SHA1
  
  3ddcfa7e58f91b1f6927c552cc28884b4ffd7cc4
- SHA256
  
  5f55f8a9b2b425ed3607898eab331e3c397421375284970da25f89c118198cb4
- SHA512
  
  c07b9b34676cae5cc3c4728f0271fc59bdc718366b5001b5702f48f82780f377a8e3d9415acf794b42df2ad6d0c3e40894591ee691b6d5bdf313fd76df620a64
- SSDEEP
  
  3072:/NgPgHgvgo1TNRtRSR5RtR7fKDzOZWJihixOWPKTksFyQ9mIP:uoAIUZRtRSR5RtRPWDbPKTcsmIP
Score

9^/10

discovery
- Contacts a large (253492) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Enumerates active TCP sockets
  Gets active TCP sockets from /proc virtual filesystem.
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Network Service Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy