General

  • Target

    F6XKY_na.elf

  • Size

    24KB

  • Sample

    241014-s248vawepl

  • MD5

    7ae28e3e36a693bfcbfdae8284762bd6

  • SHA1

    3e04ea21894e029ab08f3db09e20630c9dcbb084

  • SHA256

    5c6b7b118325ff663b3f44859d671820e10f9c4b52edd4c0e54e31997439422c

  • SHA512

    3c840a0856a587e92aa9db1d2b589a5b4e4ce0f7308a4bc7cc2b69d8b1ec5a13487f7cc069f89653f0203415f88d5f4f5555d544360b214645e92b385afe54cf

  • SSDEEP

    768:obrQlS07dEv0UXqUhvQE+CXQKMQKCXBpceZqSWvU:4QlS07FUXqIYSXQKquFq8

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      F6XKY_na.elf

    • Size

      24KB

    • MD5

      7ae28e3e36a693bfcbfdae8284762bd6

    • SHA1

      3e04ea21894e029ab08f3db09e20630c9dcbb084

    • SHA256

      5c6b7b118325ff663b3f44859d671820e10f9c4b52edd4c0e54e31997439422c

    • SHA512

      3c840a0856a587e92aa9db1d2b589a5b4e4ce0f7308a4bc7cc2b69d8b1ec5a13487f7cc069f89653f0203415f88d5f4f5555d544360b214645e92b385afe54cf

    • SSDEEP

      768:obrQlS07dEv0UXqUhvQE+CXQKMQKCXBpceZqSWvU:4QlS07FUXqIYSXQKquFq8

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Writes file to system bin folder

MITRE ATT&CK Enterprise v15

Tasks