mirai | 50ed9ea60a0c48f7c8740e3ea59633b20456e53179d8a514c09a2995b148a80f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8d8874601bc445cef18ee2d72938f9a8_JaffaCakes118
Size

45KB
Sample

240812-gdv5gsxfqr
MD5

8d8874601bc445cef18ee2d72938f9a8
SHA1

77687b9fe540859a7585b43c410571f09bfb1714
SHA256

50ed9ea60a0c48f7c8740e3ea59633b20456e53179d8a514c09a2995b148a80f
SHA512

e36165af3cedb4f52f19c94782d0f3613bd9d6284026bf95e1c8c9734c8d0525388d6183b63bbe2b8c68e9ea7f93f571fc28f307d0696475b84acba4f7ee3564
SSDEEP

768:7pk59pjPJHcGfJb9ybgTcZMz6VfwIJNAxJb+9fD2HKxSw:dk59pjPJHcU59ykTcZg6VzNm5+9fKKx

Score

10^/10

mirai linux rootkit

Malware Config

Extracted

Family

mirai

C2

listen.kristen.pw

Targets

- Target
  
  8d8874601bc445cef18ee2d72938f9a8_JaffaCakes118
- Size
  
  45KB
- MD5
  
  8d8874601bc445cef18ee2d72938f9a8
- SHA1
  
  77687b9fe540859a7585b43c410571f09bfb1714
- SHA256
  
  50ed9ea60a0c48f7c8740e3ea59633b20456e53179d8a514c09a2995b148a80f
- SHA512
  
  e36165af3cedb4f52f19c94782d0f3613bd9d6284026bf95e1c8c9734c8d0525388d6183b63bbe2b8c68e9ea7f93f571fc28f307d0696475b84acba4f7ee3564
- SSDEEP
  
  768:7pk59pjPJHcGfJb9ybgTcZMz6VfwIJNAxJb+9fD2HKxSw:dk59pjPJHcU59ykTcZg6VzNm5+9fKKx
Score

7^/10

rootkit
- Loads a kernel module
  Loads a Linux kernel module, potentially to achieve persistence
  rootkit
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1