Analysis

  • max time kernel
    0s
  • platform
    debian-9_mipsel
  • resource
    debian9-mipsel-20240418-en
  • resource tags

    arch:mipselimage:debian9-mipsel-20240418-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
  • submitted
    25-09-2024 12:09

General

  • Target

    f5fb589f73bcfc19c0deca0de876352a_JaffaCakes118

  • Size

    32KB

  • MD5

    f5fb589f73bcfc19c0deca0de876352a

  • SHA1

    e8da9450db4136526fc2a0b82a30c93de9126525

  • SHA256

    ab0ed3d98f2821549c75be4b98fe1911959ea60f258aecdf1a74447780e7a63d

  • SHA512

    125222b3968ef5c1960eeec0d8730d23243ae6088b7fb3ac2b98a183010262de9a454e49252fb4daba764cd1cfb641c300cff3af224f9893cd9c9c2793cbfd8f

  • SSDEEP

    384:sPrlnSWQDgUiNpMwCSfuHHiGsWdgyFXEktVjIOQPYgQD/62uk10/JaotTSPRWGVW:sPJn8Vi2S2HnWkvjIOE/QDidqiSZWMo

Malware Config

Extracted

Family

mirai

Botnet

WICKED

Signatures

  • Mirai

    Mirai is a prevalent Linux malware infecting exposed network devices.

  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/f5fb589f73bcfc19c0deca0de876352a_JaffaCakes118
    /tmp/f5fb589f73bcfc19c0deca0de876352a_JaffaCakes118
    1⤵
    • Reads runtime system information
    PID:729

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/729-1-0x00400000-0x00457f38-memory.dmp