General

  • Target

    03320ba5961755c67658446745892e24.elf

  • Size

    26KB

  • Sample

    240804-w3qzdswfle

  • MD5

    03320ba5961755c67658446745892e24

  • SHA1

    fbb42df9ca4b37ed3eb900eacf5ba5b8bf73ffce

  • SHA256

    2010309d656df44d7037476bbfc9ae025f0e2878b1cdc50abf3acefede9484af

  • SHA512

    0191be52bead49c42ba9f5edcd420d39b6918d40e845b473a4b60a6dbf0a3cebbe1d32b00efe0a7f6412c8a238b3d5b67a4d110cb2dbfa669c1e86040ca8e438

  • SSDEEP

    384:POqVVI6kXe7yZLKxx4QDZ0HYlTF0Gowd9jUl8pM8Q4212hymdGUop5hgl:m7uGmXj0HYQiAAQYs3Uoz2l

Score
10/10

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      03320ba5961755c67658446745892e24.elf

    • Size

      26KB

    • MD5

      03320ba5961755c67658446745892e24

    • SHA1

      fbb42df9ca4b37ed3eb900eacf5ba5b8bf73ffce

    • SHA256

      2010309d656df44d7037476bbfc9ae025f0e2878b1cdc50abf3acefede9484af

    • SHA512

      0191be52bead49c42ba9f5edcd420d39b6918d40e845b473a4b60a6dbf0a3cebbe1d32b00efe0a7f6412c8a238b3d5b67a4d110cb2dbfa669c1e86040ca8e438

    • SSDEEP

      384:POqVVI6kXe7yZLKxx4QDZ0HYlTF0Gowd9jUl8pM8Q4212hymdGUop5hgl:m7uGmXj0HYQiAAQYs3Uoz2l

    Score
    10/10
    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Writes file to system bin folder

MITRE ATT&CK Enterprise v15

Tasks