General

  • Target

    e27460f82d4b29d46e902573c344ea43fb28f87441508232d8fdb1a0eb47a74f.elf

  • Size

    36KB

  • Sample

    241111-dm1jsa1fkj

  • MD5

    6f30551085376afd0fe00be9cd7964a4

  • SHA1

    0543929d23cd2cf8a8e77e1f335134913e60770f

  • SHA256

    e27460f82d4b29d46e902573c344ea43fb28f87441508232d8fdb1a0eb47a74f

  • SHA512

    91739913bb1bef30f17b6a354c58f0eb7e8520615cb7afae05ff4cad05707ac47dc30b24bf0ec14b7a3a0fc4c6816247c667274dbe6873db6f2e2c9f38c598ec

  • SSDEEP

    768:/JLR/W7ThZdFW7v2ZJdNWK/fPquiYKqdlqGNX0wiXuDAisdEkGoxETWx0J:xV2zdITqJnqu3dTVLOdZGEXQ

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      e27460f82d4b29d46e902573c344ea43fb28f87441508232d8fdb1a0eb47a74f.elf

    • Size

      36KB

    • MD5

      6f30551085376afd0fe00be9cd7964a4

    • SHA1

      0543929d23cd2cf8a8e77e1f335134913e60770f

    • SHA256

      e27460f82d4b29d46e902573c344ea43fb28f87441508232d8fdb1a0eb47a74f

    • SHA512

      91739913bb1bef30f17b6a354c58f0eb7e8520615cb7afae05ff4cad05707ac47dc30b24bf0ec14b7a3a0fc4c6816247c667274dbe6873db6f2e2c9f38c598ec

    • SSDEEP

      768:/JLR/W7ThZdFW7v2ZJdNWK/fPquiYKqdlqGNX0wiXuDAisdEkGoxETWx0J:xV2zdITqJnqu3dTVLOdZGEXQ

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

    • Mirai family

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Writes file to system bin folder

MITRE ATT&CK Enterprise v15

Tasks