mirai | 4bf238b3498e13d64e46f5d0c7171b9fcd56547ab1ea0c61717a6a76c6445bb0 | Triage

Sharing

General

Target

e86e8878cee8a8884cc63d4d2a77fd61_JaffaCakes118
Size

28KB
Sample

240918-gayffawakp
MD5

e86e8878cee8a8884cc63d4d2a77fd61
SHA1

51666b4d93505f540954e0fa8b3e2f8e54e1f00d
SHA256

4bf238b3498e13d64e46f5d0c7171b9fcd56547ab1ea0c61717a6a76c6445bb0
SHA512

75dfa4d8527f216998f6412e26011045a384da354b7016e835ffb96ced0a2f71163e2e617260b75cd0a570532f837888c999cd06dc502965b7caac1ed700212a
SSDEEP

768:mF52LmExNZ2fCZiA+hqrqPl5r1OxnbIKm2JHHG:vmExNKVqAf8xn8KZJnG

Score

10^/10

mirai fbot linux rootkit

Malware Config

Extracted

Family

mirai

Botnet

FBOT

Targets

- Target
  
  e86e8878cee8a8884cc63d4d2a77fd61_JaffaCakes118
- Size
  
  28KB
- MD5
  
  e86e8878cee8a8884cc63d4d2a77fd61
- SHA1
  
  51666b4d93505f540954e0fa8b3e2f8e54e1f00d
- SHA256
  
  4bf238b3498e13d64e46f5d0c7171b9fcd56547ab1ea0c61717a6a76c6445bb0
- SHA512
  
  75dfa4d8527f216998f6412e26011045a384da354b7016e835ffb96ced0a2f71163e2e617260b75cd0a570532f837888c999cd06dc502965b7caac1ed700212a
- SSDEEP
  
  768:mF52LmExNZ2fCZiA+hqrqPl5r1OxnbIKm2JHHG:vmExNKVqAf8xn8KZJnG
Score

7^/10

rootkit
- Loads a kernel module
  Loads a Linux kernel module, potentially to achieve persistence
  rootkit
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1