General

  • Target

    e094fa55e07372a8937b51387f98b3a995980d4727a78480203ed31f783d1cf4.elf

  • Size

    43KB

  • Sample

    241014-pn1rqavgre

  • MD5

    3cd0d2b3c9359e95d6522fb18508ec5f

  • SHA1

    f28ee5961f157611852e1f58f199256a1ac08e97

  • SHA256

    e094fa55e07372a8937b51387f98b3a995980d4727a78480203ed31f783d1cf4

  • SHA512

    8f9a0edc316c8820ead01be527f8910d9b3546eb1331ca323455e49734ff05ea9994f3912effd7e2a31cb89670191624e8928bc4ffbe3bdd196cab062b493741

  • SSDEEP

    768:oBZOKj8x/QSQ3y/4qFTOdeoJWBhdYnjWcBWDW4s5GyZDa6XXzeYUO9q3UELA:gXwQSYPqFHI8rOjBn4+9DXzetLA

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      e094fa55e07372a8937b51387f98b3a995980d4727a78480203ed31f783d1cf4.elf

    • Size

      43KB

    • MD5

      3cd0d2b3c9359e95d6522fb18508ec5f

    • SHA1

      f28ee5961f157611852e1f58f199256a1ac08e97

    • SHA256

      e094fa55e07372a8937b51387f98b3a995980d4727a78480203ed31f783d1cf4

    • SHA512

      8f9a0edc316c8820ead01be527f8910d9b3546eb1331ca323455e49734ff05ea9994f3912effd7e2a31cb89670191624e8928bc4ffbe3bdd196cab062b493741

    • SSDEEP

      768:oBZOKj8x/QSQ3y/4qFTOdeoJWBhdYnjWcBWDW4s5GyZDa6XXzeYUO9q3UELA:gXwQSYPqFHI8rOjBn4+9DXzetLA

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Writes file to system bin folder

MITRE ATT&CK Enterprise v15

Tasks