mirai | 456d04a021fbff1e8e85ba354151b61d1786fa8a46b5e725711d04255e53ce94 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

gmpsl
Size

55KB
Sample

240921-lwa99awepj
MD5

78b564624433255c6a663a9ef0756109
SHA1

96068148931e1cf06f9ff7cca644b1047bbd311e
SHA256

456d04a021fbff1e8e85ba354151b61d1786fa8a46b5e725711d04255e53ce94
SHA512

97bada3044bade416b22b32b91a523af93723debf7d1a4761bcf70d013a587b4506ea18575ec66905665f5f59ac49efc2230f8fe55f9da6d5c20dc7cc4e6249c
SSDEEP

1536:XHz/LXDrlhvP7GtwU+cTT7vLzNfaAUGZxBZpTKYS:H/P7GtKXGZKY

Score

10^/10

mirai defense_evasion

Malware Config

Targets

- Target
  
  gmpsl
- Size
  
  55KB
- MD5
  
  78b564624433255c6a663a9ef0756109
- SHA1
  
  96068148931e1cf06f9ff7cca644b1047bbd311e
- SHA256
  
  456d04a021fbff1e8e85ba354151b61d1786fa8a46b5e725711d04255e53ce94
- SHA512
  
  97bada3044bade416b22b32b91a523af93723debf7d1a4761bcf70d013a587b4506ea18575ec66905665f5f59ac49efc2230f8fe55f9da6d5c20dc7cc4e6249c
- SSDEEP
  
  1536:XHz/LXDrlhvP7GtwU+cTT7vLzNfaAUGZxBZpTKYS:H/P7GtKXGZKY
Score

7^/10

defense_evasion
- Deletes itself
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasion