General

  • Target

    41109092c2367b78d2ff0e7b9f4621b7ed374234f5974662163fc2862db2f22c.elf

  • Size

    20KB

  • Sample

    241109-cz6e5avhpr

  • MD5

    3ca9dfad96fdf8f1ba92f7b2ec8aaf29

  • SHA1

    bea0eb366674d5444ba55fdb4032def72c593af5

  • SHA256

    41109092c2367b78d2ff0e7b9f4621b7ed374234f5974662163fc2862db2f22c

  • SHA512

    1393ef3e6712917d0068a83315e2c8eca370fd2eed5a346804125af9a672dbb9e8619b366e2e7fc7de92661ffb8ee550409bbfd4536e0148c3dbae6a4ae09868

  • SSDEEP

    384:Mg4Lpj8s/qPui8uZxoIA57RWQjJiEVi+ZkXaQNAr8vcoBAvP+qNV+KLebRtXjSyk:M98o08kxofBE+ZkXaT47C2EpitXZk

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      41109092c2367b78d2ff0e7b9f4621b7ed374234f5974662163fc2862db2f22c.elf

    • Size

      20KB

    • MD5

      3ca9dfad96fdf8f1ba92f7b2ec8aaf29

    • SHA1

      bea0eb366674d5444ba55fdb4032def72c593af5

    • SHA256

      41109092c2367b78d2ff0e7b9f4621b7ed374234f5974662163fc2862db2f22c

    • SHA512

      1393ef3e6712917d0068a83315e2c8eca370fd2eed5a346804125af9a672dbb9e8619b366e2e7fc7de92661ffb8ee550409bbfd4536e0148c3dbae6a4ae09868

    • SSDEEP

      384:Mg4Lpj8s/qPui8uZxoIA57RWQjJiEVi+ZkXaQNAr8vcoBAvP+qNV+KLebRtXjSyk:M98o08kxofBE+ZkXaT47C2EpitXZk

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

    • Mirai family

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Writes file to system bin folder

MITRE ATT&CK Enterprise v15

Tasks