General

  • Target

    26ed029a27372f74cad657cfe326b46735a41625787b11f08ee017e26587a978.elf

  • Size

    21KB

  • Sample

    241013-bhpklsvhqm

  • MD5

    2292a62fe8facaa344b6943b061dcb56

  • SHA1

    b0e10b9e6cc89e8e369cdc17bba5e9a14e88360a

  • SHA256

    26ed029a27372f74cad657cfe326b46735a41625787b11f08ee017e26587a978

  • SHA512

    1fd5efb02ba3cca061e9acfaba3b0ad4792b63397c26024838dfd23be1562ee775fc167cdcbf799a4094b47a0b8515e260efe734d6ba48f5e09a59cc052c62ff

  • SSDEEP

    384:KvtIoZxrSniaXs+qx+bwqPXCGp1i53he4lVhJwlvLu6D816whymdGUop5ho:KvQn4j+TiXV7wlvJws3Uozy

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      26ed029a27372f74cad657cfe326b46735a41625787b11f08ee017e26587a978.elf

    • Size

      21KB

    • MD5

      2292a62fe8facaa344b6943b061dcb56

    • SHA1

      b0e10b9e6cc89e8e369cdc17bba5e9a14e88360a

    • SHA256

      26ed029a27372f74cad657cfe326b46735a41625787b11f08ee017e26587a978

    • SHA512

      1fd5efb02ba3cca061e9acfaba3b0ad4792b63397c26024838dfd23be1562ee775fc167cdcbf799a4094b47a0b8515e260efe734d6ba48f5e09a59cc052c62ff

    • SSDEEP

      384:KvtIoZxrSniaXs+qx+bwqPXCGp1i53he4lVhJwlvLu6D816whymdGUop5ho:KvQn4j+TiXV7wlvJws3Uozy

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Writes file to system bin folder

MITRE ATT&CK Enterprise v15

Tasks