General

  • Target

    707a881bd760bea0e57104116e4a2aeb8d2982e2e62889ee3e85bfda58a0859d.elf

  • Size

    93KB

  • Sample

    240906-jev7zsvalg

  • MD5

    198193a2aaa6586ac1c5dbf64396f846

  • SHA1

    153f5eb2a511dedab32bcf68fc9c92b452ac31e7

  • SHA256

    707a881bd760bea0e57104116e4a2aeb8d2982e2e62889ee3e85bfda58a0859d

  • SHA512

    6c2ba5ae132274b9425b200283ff6083fbf51390da7683f93d7c1a6c95b8ba8c98961d3887cf7934d13ff247a1087a29e2c105d924ee672c72eab74f9e4c4a0f

  • SSDEEP

    1536:Cs7Mwbu4wjPMZy4TfK3lZITxSjsvjCzgT8SeBp8Ocz9EUKVmUJJv2X1:Cs7dS4wj934TYSbT8RQA/U

Malware Config

Extracted

Family

mirai

C2

www.india-scam-call-center.pw

Targets

    • Target

      707a881bd760bea0e57104116e4a2aeb8d2982e2e62889ee3e85bfda58a0859d.elf

    • Size

      93KB

    • MD5

      198193a2aaa6586ac1c5dbf64396f846

    • SHA1

      153f5eb2a511dedab32bcf68fc9c92b452ac31e7

    • SHA256

      707a881bd760bea0e57104116e4a2aeb8d2982e2e62889ee3e85bfda58a0859d

    • SHA512

      6c2ba5ae132274b9425b200283ff6083fbf51390da7683f93d7c1a6c95b8ba8c98961d3887cf7934d13ff247a1087a29e2c105d924ee672c72eab74f9e4c4a0f

    • SSDEEP

      1536:Cs7Mwbu4wjPMZy4TfK3lZITxSjsvjCzgT8SeBp8Ocz9EUKVmUJJv2X1:Cs7dS4wj934TYSbT8RQA/U

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Writes file to system bin folder

MITRE ATT&CK Enterprise v15

Tasks