mirai | 72e5f68a809d396480993cde5c6802a046394f2e7a92320533e34de2142fa92f | Triage

Submit
Reports

Overview

overview

Static

static

5

72e5f68a80...2f.elf

ubuntu-18.04-amd64

Sharing

General

Target

72e5f68a809d396480993cde5c6802a046394f2e7a92320533e34de2142fa92f.elf
Size

37KB
Sample

241114-c4llhstcpn
MD5

82509bfc921627d6e784bae29a9ba61f
SHA1

aeadcb2cdf407a6018c8cbdb82b7d9b385f12be6
SHA256

72e5f68a809d396480993cde5c6802a046394f2e7a92320533e34de2142fa92f
SHA512

ea43e1a867b233cb4e9b338f410b494461712b66ffb11ab1c170cf7d3f7724d6e9cd71d73934b33d2e66364f40b4e5375cf06c0bf3dc40f246da72a7388aee37
SSDEEP

768:ea+BWS+ZPwIIBPGXna4nvdQL5zc6R96SMO/ieUeSMIQ3begGnbcuyD7UrQRj9:ea+BH+hKBAa4Vcc6RwSMO/ieCM33begx

Score

10^/10

mirai lzrd botnet defense_evasion discovery linux upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

72e5f68a809d396480993cde5c6802a046394f2e7a92320533e34de2142fa92f.elf

Resource

ubuntu1804-amd64-20240611-en

mirai lzrd botnet defense_evasion discovery

ubuntu-18.04-amd64

6 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

- Target
  
  72e5f68a809d396480993cde5c6802a046394f2e7a92320533e34de2142fa92f.elf
- Size
  
  37KB
- MD5
  
  82509bfc921627d6e784bae29a9ba61f
- SHA1
  
  aeadcb2cdf407a6018c8cbdb82b7d9b385f12be6
- SHA256
  
  72e5f68a809d396480993cde5c6802a046394f2e7a92320533e34de2142fa92f
- SHA512
  
  ea43e1a867b233cb4e9b338f410b494461712b66ffb11ab1c170cf7d3f7724d6e9cd71d73934b33d2e66364f40b4e5375cf06c0bf3dc40f246da72a7388aee37
- SSDEEP
  
  768:ea+BWS+ZPwIIBPGXna4nvdQL5zc6R96SMO/ieUeSMIQ3begGnbcuyD7UrQRj9:ea+BH+hKBAa4Vcc6RwSMO/ieCM33begx
Score

10^/10

mirai lzrd botnet defense_evasion discovery
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Mirai family
  mirai
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
- Enumerates running processes
  Discovers information about currently running processes on the system
- Writes file to system bin folder
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mirailzrdbotnetdefense_evasiondiscovery

© 2018-2024

Terms | Privacy