mirai | 23fd561fd02c7b78c9adc8bf20179fd624d9934b7b2cedfd992d7d696447d506 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8fa434253666534dcf9074ca3d981611.bin
Size

50KB
Sample

241014-lkp92axgll
MD5

43a15c0c752e6da28900a2ab93e4295c
SHA1

8e1f12fab9eae3d44c893306c6cc54b4f4368240
SHA256

23fd561fd02c7b78c9adc8bf20179fd624d9934b7b2cedfd992d7d696447d506
SHA512

c2a9685ff1be0b33eb6f06061086deb34f8f4b15c334467f2d3b57093b1472aa9c0406a4dae97680619ea583155633d833edfc1f7b6844527139f503ebd153a7
SSDEEP

768:3X8UA/Y+pXS3u1zoOwNwe55HVha2uFSukxtb6YH9pEIshy/HP6nina:3sUA/Y+pXSwwNlLLbvZj4havNa

Score

10^/10

mirai defense_evasion

Malware Config

Targets

- Target
  
  6a64c43559802cef9f4cab56e8d2f5e93b748ce154dc26cd16a916dfd791d7be.elf
- Size
  
  111KB
- MD5
  
  8fa434253666534dcf9074ca3d981611
- SHA1
  
  9b8585f8facf7186155a20412bcc7ab7554f96ac
- SHA256
  
  6a64c43559802cef9f4cab56e8d2f5e93b748ce154dc26cd16a916dfd791d7be
- SHA512
  
  30fa2c03e9e39f58d0035726aac9f8371a2fca54319cddddeb5e20c304c2608fea0af5bae1ee60d51b2102653ca4037698eb0a43a61fa24ee274d98362ee988a
- SSDEEP
  
  1536:FGndvXZsaiXKNT6tZ7jbrNryeIYCm9lXlib7pYoSa+OrkxVVu2VgnYAnD4:umahN2thrNryeIOY7pYTa+OwxfxV8U
Score

7^/10

defense_evasion
- Deletes itself
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasion