General
-
Target
be95b29da48e169996c492b3c95f55c8af679136df3adaabd24a5d67d3c2af41.elf
-
Size
5.6MB
-
Sample
241101-fz8f9svrcx
-
MD5
5f7d6a8f455e8f7c990ef1541efc6199
-
SHA1
b25948840f5fa898cacc888074010bf77a8843cd
-
SHA256
be95b29da48e169996c492b3c95f55c8af679136df3adaabd24a5d67d3c2af41
-
SHA512
ae3b3a70f9c1e5de164b534393e5cea48258a8c5ef43a0b9f22bb6caff483d6b2a0dfdfe933fc7a7e8ec15209994809aa620326d8b6bb30ea98ccf93bccd1079
-
SSDEEP
98304:yC91hAFxvW6WGVqq7g3JDCg76dAuE8iW5ay5mIOX+aaNcc8pNkxXkz8xBs3K4HUO:yC91hAFxvW6WGVqq7g3JDCg76dAuE8ip
Behavioral task
behavioral1
Sample
be95b29da48e169996c492b3c95f55c8af679136df3adaabd24a5d67d3c2af41.elf
Resource
debian12-mipsel-20240221-en
Malware Config
Targets
-
-
Target
be95b29da48e169996c492b3c95f55c8af679136df3adaabd24a5d67d3c2af41.elf
-
Size
5.6MB
-
MD5
5f7d6a8f455e8f7c990ef1541efc6199
-
SHA1
b25948840f5fa898cacc888074010bf77a8843cd
-
SHA256
be95b29da48e169996c492b3c95f55c8af679136df3adaabd24a5d67d3c2af41
-
SHA512
ae3b3a70f9c1e5de164b534393e5cea48258a8c5ef43a0b9f22bb6caff483d6b2a0dfdfe933fc7a7e8ec15209994809aa620326d8b6bb30ea98ccf93bccd1079
-
SSDEEP
98304:yC91hAFxvW6WGVqq7g3JDCg76dAuE8iW5ay5mIOX+aaNcc8pNkxXkz8xBs3K4HUO:yC91hAFxvW6WGVqq7g3JDCg76dAuE8ip
-
Executes dropped EXE
-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
Enumerates running processes
Discovers information about currently running processes on the system
-
Modifies systemd
Adds/ modifies systemd service files. Likely to achieve persistence.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
2XDG Autostart Entries
1Boot or Logon Initialization Scripts
1RC Scripts
1Create or Modify System Process
1Systemd Service
1