mirai | 6c9686002734e274f6efe4c0d40ff8e0372746d735c072bfbf8e814fa38627c8 | Triage

Sharing

General

Target

xd.mpsl.elf
Size

37KB
Sample

241115-cjzyeazqdp
MD5

6fcd643fee75bab34d5927385b063175
SHA1

ce199428acf956b7913f82e0cf2e2603d89420db
SHA256

6c9686002734e274f6efe4c0d40ff8e0372746d735c072bfbf8e814fa38627c8
SHA512

c1f2f4838119e2d78e65343bf367386e2ce80086765357fa4d8b4f05883c6b3b692127a1837e0b5f115bb00e28b2f03a58dae3e5bb4e6e9b03ecc692eaf8eb36
SSDEEP

768:bQbLKQ0eszIICSVVUsEkvGsJghKVsfjtFVVUVBbiyFpbTK5cWT:GnIXnUuOKuhFVSmHZ

Score

10^/10

mirai lzrd botnet defense_evasion upx

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

- Target
  
  xd.mpsl.elf
- Size
  
  37KB
- MD5
  
  6fcd643fee75bab34d5927385b063175
- SHA1
  
  ce199428acf956b7913f82e0cf2e2603d89420db
- SHA256
  
  6c9686002734e274f6efe4c0d40ff8e0372746d735c072bfbf8e814fa38627c8
- SHA512
  
  c1f2f4838119e2d78e65343bf367386e2ce80086765357fa4d8b4f05883c6b3b692127a1837e0b5f115bb00e28b2f03a58dae3e5bb4e6e9b03ecc692eaf8eb36
- SSDEEP
  
  768:bQbLKQ0eszIICSVVUsEkvGsJghKVsfjtFVVUVBbiyFpbTK5cWT:GnIXnUuOKuhFVSmHZ
Score

10^/10

mirai lzrd botnet defense_evasion
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Mirai family
  mirai
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mirailzrdbotnetdefense_evasion