mirai | f71f4e6d67db61fd21bc0c2f612412c8373ee60101fcfc34f0f99bd861d934ad | Triage

Submit
Reports

Overview

overview

Static

static

5

f71f4e6d67...ad.elf

ubuntu-22.04-amd64

Sharing

General

Target

f71f4e6d67db61fd21bc0c2f612412c8373ee60101fcfc34f0f99bd861d934ad.elf
Size

36KB
Sample

241111-dq98ds1fql
MD5

7b6ab415c71284b4c35e8690d71af208
SHA1

0d7d3be2139760cfe48dfa5a3c29126175249b73
SHA256

f71f4e6d67db61fd21bc0c2f612412c8373ee60101fcfc34f0f99bd861d934ad
SHA512

f0132df1e3d177fa13a5b6d54daff5ab48c63d03aedb8820160f526acb089a77ff030d348ed2321a845fa90fa1847ae83744b65a57beaaff88cc812105854cf0
SSDEEP

768:FdXCmnRFXIrd5wVr/FyuCh3JNYiwKuHONTSv9sPC1:rS2RFAErYuYvD8HLFuC1

Score

10^/10

mirai mirai botnet defense_evasion discovery linux upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f71f4e6d67db61fd21bc0c2f612412c8373ee60101fcfc34f0f99bd861d934ad.elf

Resource

ubuntu2204-amd64-20240611-en

mirai mirai botnet defense_evasion discovery

ubuntu-22.04-amd64

8 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

MIRAI

Targets

- Target
  
  f71f4e6d67db61fd21bc0c2f612412c8373ee60101fcfc34f0f99bd861d934ad.elf
- Size
  
  36KB
- MD5
  
  7b6ab415c71284b4c35e8690d71af208
- SHA1
  
  0d7d3be2139760cfe48dfa5a3c29126175249b73
- SHA256
  
  f71f4e6d67db61fd21bc0c2f612412c8373ee60101fcfc34f0f99bd861d934ad
- SHA512
  
  f0132df1e3d177fa13a5b6d54daff5ab48c63d03aedb8820160f526acb089a77ff030d348ed2321a845fa90fa1847ae83744b65a57beaaff88cc812105854cf0
- SSDEEP
  
  768:FdXCmnRFXIrd5wVr/FyuCh3JNYiwKuHONTSv9sPC1:rS2RFAErYuYvD8HLFuC1
Score

10^/10

mirai mirai botnet defense_evasion discovery
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Mirai family
  mirai
- Contacts a large (23966) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- File and Directory Permissions Modification
  Adversaries may modify file or directory permissions to evade defenses.
  defense_evasion
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

Linux and Mac File and Directory Permissions Modification

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

miraimiraibotnetdefense_evasiondiscovery

© 2018-2024

Terms | Privacy