Overview

overview

10

Static

static

5

Satan.x86_64.elf

ubuntu-24.04-amd64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Satan.x86_64.elf

  • Size

    36KB

  • Sample

    241115-2fzwnsxmem

  • MD5

    61e21345f095015159d3bc3cf8e03c45

  • SHA1

    10110e69d9ad7704150f454d385312c4784f6ec8

  • SHA256

    fbdd988dc8735258f6fea1c65e740d2b727844ad120b065bfb8a545b7aad9dc6

  • SHA512

    1aaf63f2e069fbbfb4b40e132e67befb14b0dfe421bb3eb6dee02bac2781d34ae7e8e7dba693700ae218cfcf9f687e1694a2a6f1ee04bfc6fc2233d0c9debb68

  • SSDEEP

    768:c+4qtvWUAASjjLMGz7/tjBQd4Mt8nEPH3GguHNg+Wx0L:H9tvWrASjjL17/9BODtoPguHNqC

Score
10/10
mirailzrdbotnetdefense_evasiondiscoverylinuxupx

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      Satan.x86_64.elf

    • Size

      36KB

    • MD5

      61e21345f095015159d3bc3cf8e03c45

    • SHA1

      10110e69d9ad7704150f454d385312c4784f6ec8

    • SHA256

      fbdd988dc8735258f6fea1c65e740d2b727844ad120b065bfb8a545b7aad9dc6

    • SHA512

      1aaf63f2e069fbbfb4b40e132e67befb14b0dfe421bb3eb6dee02bac2781d34ae7e8e7dba693700ae218cfcf9f687e1694a2a6f1ee04bfc6fc2233d0c9debb68

    • SSDEEP

      768:c+4qtvWUAASjjLMGz7/tjBQd4Mt8nEPH3GguHNg+Wx0L:H9tvWrASjjL17/9BODtoPguHNqC

    Score
    10/10
    mirailzrdbotnetdefense_evasiondiscovery

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

      botnetmirai

    • Mirai family

      mirai

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

      defense_evasion

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Writes file to system bin folder

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks