mirai | 0299db4a0ce21dcc0e22f52e8c59708b91f77c63d6bfe03c88e1eca328d2e4e5 | Triage

Submit
Reports

Overview

overview

Static

static

5

0299db4a0c...e5.elf

debian-12-armhf

Sharing

General

Target

0299db4a0ce21dcc0e22f52e8c59708b91f77c63d6bfe03c88e1eca328d2e4e5.elf
Size

60KB
Sample

241116-cf3vwsxgke
MD5

5bab80408920f56ad67ab4d605cb522a
SHA1

14e4c55cea2e569fff6050191d43b268304e5839
SHA256

0299db4a0ce21dcc0e22f52e8c59708b91f77c63d6bfe03c88e1eca328d2e4e5
SHA512

d9f1d1363d09ec001592db0df5c8474c94a8acef3f278cd3a8117e6edd6c5a2b70bc7b249e5fe56bdde7cb78cc6dde73efb78d4f53a509244175dfdb20c3edc7
SSDEEP

1536:zVQSmwtMJXmejthsPLTM5Tfv83KJ2crl2EWE:zVywt8XZMPLgTX83KHl2EWE

Score

10^/10

mirai lzrd botnet defense_evasion discovery upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

0299db4a0ce21dcc0e22f52e8c59708b91f77c63d6bfe03c88e1eca328d2e4e5.elf

Resource

debian12-armhf-20240418-en

mirai lzrd botnet defense_evasion discovery

debian-12-armhf

6 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

- Target
  
  0299db4a0ce21dcc0e22f52e8c59708b91f77c63d6bfe03c88e1eca328d2e4e5.elf
- Size
  
  60KB
- MD5
  
  5bab80408920f56ad67ab4d605cb522a
- SHA1
  
  14e4c55cea2e569fff6050191d43b268304e5839
- SHA256
  
  0299db4a0ce21dcc0e22f52e8c59708b91f77c63d6bfe03c88e1eca328d2e4e5
- SHA512
  
  d9f1d1363d09ec001592db0df5c8474c94a8acef3f278cd3a8117e6edd6c5a2b70bc7b249e5fe56bdde7cb78cc6dde73efb78d4f53a509244175dfdb20c3edc7
- SSDEEP
  
  1536:zVQSmwtMJXmejthsPLTM5Tfv83KJ2crl2EWE:zVywt8XZMPLgTX83KHl2EWE
Score

10^/10

mirai lzrd botnet defense_evasion discovery
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Mirai family
  mirai
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
- Enumerates running processes
  Discovers information about currently running processes on the system
- Writes file to system bin folder
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mirailzrdbotnetdefense_evasiondiscovery

© 2018-2024

Terms | Privacy