mirai | 0f1805bc2402069b538a25fa633bc680090c5dcb8ac930b55b626ee45615d562 | Triage

Submit
Reports

Overview

overview

Static

static

5

ub8ehJSePA...m6.elf

debian-12-armhf

Sharing

General

Target

ub8ehJSePAfc9FYqZIT6.arm6.elf
Size

43KB
Sample

241113-jcykbswrbt
MD5

a2704328a12405ec890423b56a54ae95
SHA1

fca3901ffc843c1e86af1939aee138f8e780fa6f
SHA256

0f1805bc2402069b538a25fa633bc680090c5dcb8ac930b55b626ee45615d562
SHA512

27524353afce1c8639d284f2ac83945799590401ca71502129a67c53fdf8227afc07015bc8ae3f64bbbe747a92392ddc81f8324942464c34c49a4822be8ac293
SSDEEP

768:EnZOKj8x/QSQ3y/4qFTOdeoJWBhdYnjWcBWDW4s5GyZDa6XXfSwmH9q3UELn:yXwQSYPqFHI8rOjBn4+9DX6wmWLn

Score

10^/10

mirai lzrd botnet defense_evasion discovery upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ub8ehJSePAfc9FYqZIT6.arm6.elf

Resource

debian12-armhf-20240221-en

mirai lzrd botnet defense_evasion discovery

debian-12-armhf

6 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

- Target
  
  ub8ehJSePAfc9FYqZIT6.arm6.elf
- Size
  
  43KB
- MD5
  
  a2704328a12405ec890423b56a54ae95
- SHA1
  
  fca3901ffc843c1e86af1939aee138f8e780fa6f
- SHA256
  
  0f1805bc2402069b538a25fa633bc680090c5dcb8ac930b55b626ee45615d562
- SHA512
  
  27524353afce1c8639d284f2ac83945799590401ca71502129a67c53fdf8227afc07015bc8ae3f64bbbe747a92392ddc81f8324942464c34c49a4822be8ac293
- SSDEEP
  
  768:EnZOKj8x/QSQ3y/4qFTOdeoJWBhdYnjWcBWDW4s5GyZDa6XXfSwmH9q3UELn:yXwQSYPqFHI8rOjBn4+9DX6wmWLn
Score

10^/10

mirai lzrd botnet defense_evasion discovery
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Mirai family
  mirai
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
- Enumerates running processes
  Discovers information about currently running processes on the system
- Writes file to system bin folder
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mirailzrdbotnetdefense_evasiondiscovery

© 2018-2024

Terms | Privacy