General
-
Target
6285bb955f098d2e4cff8f38ff4b7aaf40b2d6a7c54f11f0d0a84a197f503de8
-
Size
61KB
-
Sample
240818-xezr3ayara
-
MD5
7ac99919fc71f8987c583b5692ec30dc
-
SHA1
b8cf421ff8e16a4d0a292cfea9fe14eab0f97af8
-
SHA256
6285bb955f098d2e4cff8f38ff4b7aaf40b2d6a7c54f11f0d0a84a197f503de8
-
SHA512
84552a6322844d49e6876fbca2cb96b605e6d270bf40bc64de4bbb568039a86fc12d0f478639b8282adc5139e9cd0498971953bde8b8d7785ede87b45bf89744
-
SSDEEP
1536:dWQCTjHPGiTNxH5luCCfvY6+yN8cNBcfer+u0BwbZnm:4QCTjHPpxHQXYFyKS6fxrwbZnm
Malware Config
Extracted
mirai
MIRAI
Targets
-
-
Target
6285bb955f098d2e4cff8f38ff4b7aaf40b2d6a7c54f11f0d0a84a197f503de8
-
Size
61KB
-
MD5
7ac99919fc71f8987c583b5692ec30dc
-
SHA1
b8cf421ff8e16a4d0a292cfea9fe14eab0f97af8
-
SHA256
6285bb955f098d2e4cff8f38ff4b7aaf40b2d6a7c54f11f0d0a84a197f503de8
-
SHA512
84552a6322844d49e6876fbca2cb96b605e6d270bf40bc64de4bbb568039a86fc12d0f478639b8282adc5139e9cd0498971953bde8b8d7785ede87b45bf89744
-
SSDEEP
1536:dWQCTjHPGiTNxH5luCCfvY6+yN8cNBcfer+u0BwbZnm:4QCTjHPpxHQXYFyKS6fxrwbZnm
Score9/10-
Contacts a large (71491) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Loads a kernel module
Loads a Linux kernel module, potentially to achieve persistence
-
Writes file to system bin folder
-