mirai | cee25cc5b9582224d6bc20580fbfb9aecc21efbf673719d378172cb0756e5415 | Triage

Submit
Reports

Overview

overview

Static

static

cyber-x86

ubuntu-22.04-amd64

7

Sharing

General

Target

cyber-x86
Size

61KB
Sample

240811-bpdrpasdmh
MD5

df62d3d53d3f634aae4a37df11acd1ed
SHA1

e5af5f52fe71317deda7e266b5c1d4d1610f34da
SHA256

cee25cc5b9582224d6bc20580fbfb9aecc21efbf673719d378172cb0756e5415
SHA512

911c64d707198f72e72770d4f1b303235befcdcbb72bdf5fb436a06dc9f9484cb45fda47dbc1242184c3108af653fc23b7b3afa858ff0b6db23024d98960ae30
SSDEEP

1536:2J5ivXfltjxvStba8IluvBhcZxb5l9CSNBODDF:2J5iXjjxvuba8I5P5ODDF

Score

10^/10

mirai evasion linux

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

cyber-x86

Resource

ubuntu2204-amd64-20240611-en

ubuntu-22.04-amd64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  cyber-x86
- Size
  
  61KB
- MD5
  
  df62d3d53d3f634aae4a37df11acd1ed
- SHA1
  
  e5af5f52fe71317deda7e266b5c1d4d1610f34da
- SHA256
  
  cee25cc5b9582224d6bc20580fbfb9aecc21efbf673719d378172cb0756e5415
- SHA512
  
  911c64d707198f72e72770d4f1b303235befcdcbb72bdf5fb436a06dc9f9484cb45fda47dbc1242184c3108af653fc23b7b3afa858ff0b6db23024d98960ae30
- SSDEEP
  
  1536:2J5ivXfltjxvStba8IluvBhcZxb5l9CSNBODDF:2J5iXjjxvuba8I5P5ODDF
Score

7^/10

evasion
- Deletes journal logs
  Deletes systemd journal logs. Likely to evade detection.
  evasion
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Indicator Removal

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy