mirai | de0eb1e3f962179786edcdba9de547696bdb6e997f00a5529caf537112d734ae | Triage

Sharing

General

Target

novo.x8664.elf
Size

64KB
Sample

241003-gr5abasanc
MD5

0a290c232a49ec93a6da03ee7edb1edf
SHA1

94f2fd1cc66b82c9e06c9033699e160e812be8f5
SHA256

de0eb1e3f962179786edcdba9de547696bdb6e997f00a5529caf537112d734ae
SHA512

a72a9a4c92c290b4da278266707cfd8773011842159e89b74fb91c147985f5df9a4ca1af6a5546148689ebe9ca1e392ecf139575f0640a8f1058d7628b5bf90b
SSDEEP

1536:xUjC4qlQ6wBZfgSaaRouE7k7KQk3/ZTGW5V6GlJWBwbZnR:SjCdl5mZfDafuEQ7Kp/Zn5VDlJIwbZnR

Score

10^/10

mirai mirai discovery linux

Malware Config

Extracted

Family

mirai

Botnet

MIRAI

C2

novo.doxbin.top

Targets

- Target
  
  novo.x8664.elf
- Size
  
  64KB
- MD5
  
  0a290c232a49ec93a6da03ee7edb1edf
- SHA1
  
  94f2fd1cc66b82c9e06c9033699e160e812be8f5
- SHA256
  
  de0eb1e3f962179786edcdba9de547696bdb6e997f00a5529caf537112d734ae
- SHA512
  
  a72a9a4c92c290b4da278266707cfd8773011842159e89b74fb91c147985f5df9a4ca1af6a5546148689ebe9ca1e392ecf139575f0640a8f1058d7628b5bf90b
- SSDEEP
  
  1536:xUjC4qlQ6wBZfgSaaRouE7k7KQk3/ZTGW5V6GlJWBwbZnR:SjCdl5mZfDafuEQ7Kp/Zn5VDlJIwbZnR
Score

9^/10

discovery
- Contacts a large (23992) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1