General

  • Target

    linux_mipsel.elf

  • Size

    5.6MB

  • Sample

    241108-lc2yvsslep

  • MD5

    51c38d64622a147b3cebff1d0673f84c

  • SHA1

    53b2f3bff3137e6e963864f07e6c720e495bc530

  • SHA256

    5d93f66e884ea78188a88fe09933c4fbcce638e8653f9a29e7c093a24833b65a

  • SHA512

    f54df32d0f3be7f72a483fc07a72d183be3fc880116b6618afcd48de3f5ab237e1f2dc8aa96877d4278441e0477cdb348dea0583fbdf9b572b17dd6fcae115bc

  • SSDEEP

    98304:yC91hAFxvW6WGVqq7g3JDCg76dAuE8iW5ay5mIOX+aaNcc8pNkxXkz8xBs3K4HUK:yC91hAFxvW6WGVqq7g3JDCg76dAuE8i1

Malware Config

Targets

    • Target

      linux_mipsel.elf

    • Size

      5.6MB

    • MD5

      51c38d64622a147b3cebff1d0673f84c

    • SHA1

      53b2f3bff3137e6e963864f07e6c720e495bc530

    • SHA256

      5d93f66e884ea78188a88fe09933c4fbcce638e8653f9a29e7c093a24833b65a

    • SHA512

      f54df32d0f3be7f72a483fc07a72d183be3fc880116b6618afcd48de3f5ab237e1f2dc8aa96877d4278441e0477cdb348dea0583fbdf9b572b17dd6fcae115bc

    • SSDEEP

      98304:yC91hAFxvW6WGVqq7g3JDCg76dAuE8iW5ay5mIOX+aaNcc8pNkxXkz8xBs3K4HUK:yC91hAFxvW6WGVqq7g3JDCg76dAuE8i1

    • Executes dropped EXE

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Modifies init.d

      Adds/modifies system service, likely for persistence.

    • Modifies systemd

      Adds/ modifies systemd service files. Likely to achieve persistence.

MITRE ATT&CK Enterprise v15

Tasks