General

  • Target

    db98f880a4bba26ec7533d9d4cdec2ac.elf

  • Size

    37KB

  • Sample

    241108-hx815azqcm

  • MD5

    db98f880a4bba26ec7533d9d4cdec2ac

  • SHA1

    1190a230661735b5ee60d24d53da23a9dcdc143e

  • SHA256

    8e788074af38f2ec03c421d419510af82112dd7111e254b11024f11f83adb205

  • SHA512

    5d437f9e8c33795825a464f16a2ad95aafcd6dbd72e0ccaf7937b6c878ce58caf2a1d4b11b3da763d522ce69e452dddda2e2dfd550c7846b372e86ea333e92c6

  • SSDEEP

    768:CF4o5gt3IEG6Ks1mqDUKf+8hr89kxcEDV/SLXQlov0zBZLvad4mwu0GegP2zWP:El5JnsrXvrKy9QjyBZLvDmR0GfP2y

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      db98f880a4bba26ec7533d9d4cdec2ac.elf

    • Size

      37KB

    • MD5

      db98f880a4bba26ec7533d9d4cdec2ac

    • SHA1

      1190a230661735b5ee60d24d53da23a9dcdc143e

    • SHA256

      8e788074af38f2ec03c421d419510af82112dd7111e254b11024f11f83adb205

    • SHA512

      5d437f9e8c33795825a464f16a2ad95aafcd6dbd72e0ccaf7937b6c878ce58caf2a1d4b11b3da763d522ce69e452dddda2e2dfd550c7846b372e86ea333e92c6

    • SSDEEP

      768:CF4o5gt3IEG6Ks1mqDUKf+8hr89kxcEDV/SLXQlov0zBZLvad4mwu0GegP2zWP:El5JnsrXvrKy9QjyBZLvDmR0GfP2y

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

    • Mirai family

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Writes file to system bin folder

MITRE ATT&CK Enterprise v15

Tasks