General

  • Target

    debug.dbg.elf

  • Size

    69KB

  • Sample

    241101-re7j1s1hmq

  • MD5

    893c23406acbeb9be3d94fa5b7fb08b7

  • SHA1

    419fef832fdb438a61974322187056a8755d6dca

  • SHA256

    e56813b987e2bd61add3481cdcbda3dcb82d6ce965bd15de5121b6cc0cc7815c

  • SHA512

    ec9c32e25688058fd536f2f3bf073ecd06ebb4cf1880c45c91c18d7042282bda38c8e8fb3720dd81ecc33838e08b556fdc4adaaaa7fa960efb3472e6fac62795

  • SSDEEP

    1536:bSKRI7C2wEI5Z5268+I/UCCPyiO+vmoV9okwKBTx3Poui7N1OF9Q+4j:bSKRI7C2wEI5nxCCqiO+vmoVikwKBTxI

Malware Config

Extracted

Family

mirai

Botnet

UNSTABLE

C2

server.dico-inside.com

Targets

    • Target

      debug.dbg.elf

    • Size

      69KB

    • MD5

      893c23406acbeb9be3d94fa5b7fb08b7

    • SHA1

      419fef832fdb438a61974322187056a8755d6dca

    • SHA256

      e56813b987e2bd61add3481cdcbda3dcb82d6ce965bd15de5121b6cc0cc7815c

    • SHA512

      ec9c32e25688058fd536f2f3bf073ecd06ebb4cf1880c45c91c18d7042282bda38c8e8fb3720dd81ecc33838e08b556fdc4adaaaa7fa960efb3472e6fac62795

    • SSDEEP

      1536:bSKRI7C2wEI5Z5268+I/UCCPyiO+vmoV9okwKBTx3Poui7N1OF9Q+4j:bSKRI7C2wEI5nxCCqiO+vmoVikwKBTxI

    Score
    7/10
    • Deletes itself

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Writes file to system bin folder

MITRE ATT&CK Enterprise v15

Tasks