mirai | b47ebd689c7cbe560f3f0f1a7722c349df1ef307d24429dc9edf0ec86883d5c8 | Triage

Submit
Reports

Overview

overview

Static

static

5

b47ebd689c...c8.elf

debian-9-armhf

Sharing

General

Target

b47ebd689c7cbe560f3f0f1a7722c349df1ef307d24429dc9edf0ec86883d5c8.elf
Size

26KB
Sample

241101-fxsyssynam
MD5

dcab5d9ca3b40643ebef3268185b6557
SHA1

5c4e37769ffb73a5167fff724dc7e7676ecad222
SHA256

b47ebd689c7cbe560f3f0f1a7722c349df1ef307d24429dc9edf0ec86883d5c8
SHA512

0608153373eef9f1ae22920d9b35d46e6959f375b264502dc09d642569199bd2caa5adffdffd79d31bd84a5c76e54b8612bd2b3b4193e06d254aad7dab8d9e02
SSDEEP

768:2JHRvHIJX6pWbolcCpWRk7vYsqZoQs3Uozhp:WHRvHkX6Y8cK8kVFzhp

Score

10^/10

mirai lzrd botnet defense_evasion discovery upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

b47ebd689c7cbe560f3f0f1a7722c349df1ef307d24429dc9edf0ec86883d5c8.elf

Resource

debian9-armhf-20240611-en

mirai lzrd botnet defense_evasion discovery

debian-9-armhf

6 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

- Target
  
  b47ebd689c7cbe560f3f0f1a7722c349df1ef307d24429dc9edf0ec86883d5c8.elf
- Size
  
  26KB
- MD5
  
  dcab5d9ca3b40643ebef3268185b6557
- SHA1
  
  5c4e37769ffb73a5167fff724dc7e7676ecad222
- SHA256
  
  b47ebd689c7cbe560f3f0f1a7722c349df1ef307d24429dc9edf0ec86883d5c8
- SHA512
  
  0608153373eef9f1ae22920d9b35d46e6959f375b264502dc09d642569199bd2caa5adffdffd79d31bd84a5c76e54b8612bd2b3b4193e06d254aad7dab8d9e02
- SSDEEP
  
  768:2JHRvHIJX6pWbolcCpWRk7vYsqZoQs3Uozhp:WHRvHkX6Y8cK8kVFzhp
Score

10^/10

mirai lzrd botnet defense_evasion discovery
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Mirai family
  mirai
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
- Enumerates running processes
  Discovers information about currently running processes on the system
- Writes file to system bin folder
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mirailzrdbotnetdefense_evasiondiscovery

© 2018-2024

Terms | Privacy