General

  • Target

    8UsA.sh

  • Size

    1KB

  • Sample

    241102-e38e1axmex

  • MD5

    708cae4cf814c3deda4208da228fad4e

  • SHA1

    36718f87b1a7d742a991f06f7ce396f70d457861

  • SHA256

    9dd52ca3bd9dd62a4ad017f93c39e0f6855cb9b9d9b01656e6cd71593619dc2a

  • SHA512

    58584fc22497be264b532dbad3bbf88c0a13a133266c75013fea1d4a2fba025ac4422885afb4cd1caa57380c5ac842ea5a15df3eb77fdae5a34950c25ae94bfd

Malware Config

Extracted

Family

mirai

Botnet

JOSHO

Extracted

Family

mirai

Botnet

JOSHO

Extracted

Family

mirai

Botnet

JOSHO

Targets

    • Target

      8UsA.sh

    • Size

      1KB

    • MD5

      708cae4cf814c3deda4208da228fad4e

    • SHA1

      36718f87b1a7d742a991f06f7ce396f70d457861

    • SHA256

      9dd52ca3bd9dd62a4ad017f93c39e0f6855cb9b9d9b01656e6cd71593619dc2a

    • SHA512

      58584fc22497be264b532dbad3bbf88c0a13a133266c75013fea1d4a2fba025ac4422885afb4cd1caa57380c5ac842ea5a15df3eb77fdae5a34950c25ae94bfd

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

    • Mirai family

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

    • Executes dropped EXE

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

MITRE ATT&CK Enterprise v15

Tasks