General

  • Target

    2d97f39a3ef6dc8f6e4d9b75db996097.elf

  • Size

    24KB

  • Sample

    241108-jvd9eaygjm

  • MD5

    2d97f39a3ef6dc8f6e4d9b75db996097

  • SHA1

    dc3369aabf09eabc1a7760b0b07dee040351f402

  • SHA256

    4e431fe78abc46352703e0d469bfe1fc2c49dd45e34394702872d9a56cd9cace

  • SHA512

    3bb4dc5bb02d49c7a1c37dcacede517f4e5a5fbb59a5d25f7e6c932e0e8c51cc8fb2f9c2ad8300d21eb713b2ebe6d8cce9a1adca8ce2a334eaa9ee95295e9bb7

  • SSDEEP

    768:obrQlS07dEv0UXqUhvQE+CXQKMQKCXBpPZqSWv2:4QlS07FUXqIYSXQKquxqO

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      2d97f39a3ef6dc8f6e4d9b75db996097.elf

    • Size

      24KB

    • MD5

      2d97f39a3ef6dc8f6e4d9b75db996097

    • SHA1

      dc3369aabf09eabc1a7760b0b07dee040351f402

    • SHA256

      4e431fe78abc46352703e0d469bfe1fc2c49dd45e34394702872d9a56cd9cace

    • SHA512

      3bb4dc5bb02d49c7a1c37dcacede517f4e5a5fbb59a5d25f7e6c932e0e8c51cc8fb2f9c2ad8300d21eb713b2ebe6d8cce9a1adca8ce2a334eaa9ee95295e9bb7

    • SSDEEP

      768:obrQlS07dEv0UXqUhvQE+CXQKMQKCXBpPZqSWv2:4QlS07FUXqIYSXQKquxqO

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

    • Mirai family

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Writes file to system bin folder

MITRE ATT&CK Enterprise v15

Tasks