Overview

overview

10

Static

static

5

boatnet.x86.elf

ubuntu-22.04-amd64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    boatnet.x86.elf

  • Size

    23KB

  • Sample

    241101-n5jdbsynay

  • MD5

    454cf85470b937d8ea00307b2aa14418

  • SHA1

    3e9e21307dd4033dc8d2b0c1af2e7cdafd934b64

  • SHA256

    710e904d8dad3f36136cfd9b65ae9079de5e82ba92ce80b3a9ec7c253ba6d63f

  • SHA512

    d924dfac5b070755bf20b0a56045efaf4c634ab8f099b05b2b5817aadb7c04eecf0a3ac2f960edf5c9157f5a82a1dd93506ede567a9561bbc2978d743a759f9f

  • SSDEEP

    384:MGvqRBpy+Y3QXl0fnDS7f9afWwat3NCVmH8Q48SRlRDBMaiHDJmdU+v1Rqc:lqRBk+YgXmcCWL3z2aHcPd

Score
10/10
mirailzrdbotnetdefense_evasiondiscoverylinuxupx

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      boatnet.x86.elf

    • Size

      23KB

    • MD5

      454cf85470b937d8ea00307b2aa14418

    • SHA1

      3e9e21307dd4033dc8d2b0c1af2e7cdafd934b64

    • SHA256

      710e904d8dad3f36136cfd9b65ae9079de5e82ba92ce80b3a9ec7c253ba6d63f

    • SHA512

      d924dfac5b070755bf20b0a56045efaf4c634ab8f099b05b2b5817aadb7c04eecf0a3ac2f960edf5c9157f5a82a1dd93506ede567a9561bbc2978d743a759f9f

    • SSDEEP

      384:MGvqRBpy+Y3QXl0fnDS7f9afWwat3NCVmH8Q48SRlRDBMaiHDJmdU+v1Rqc:lqRBk+YgXmcCWL3z2aHcPd

    Score
    10/10
    mirailzrdbotnetdefense_evasiondiscovery

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

      botnetmirai

    • Mirai family

      mirai

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

      defense_evasion

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Writes file to system bin folder

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks