mirai | 6ba4368af53ef8ddecb7750e60b86495bc9649fdc5370fe5e70bb59e1dd32194 | Triage

Sharing

General

Target

6ba4368af53ef8ddecb7750e60b86495bc9649fdc5370fe5e70bb59e1dd32194.elf
Size

178KB
Sample

241121-f6p89syqey
MD5

ddf40003ed182c63697acb8769776307
SHA1

e47b3349e348df2532798fec9ef5839363b83fa7
SHA256

6ba4368af53ef8ddecb7750e60b86495bc9649fdc5370fe5e70bb59e1dd32194
SHA512

40d2e6698e86b00d900d28cdf3450b1ca117042a0f21da5b6c0b52dbcef65fc6a9efe93846c505d39d595adb48f40e0b986ff05fcc8027f00fe690ae5720f108
SSDEEP

3072:2DR+sU7Kl3IKScPxelSoAauHthDkJjYB71uGhLs5K5h0oXM/Rc9:2DR+Z7KlpScP0woAauHthDkhYHuMLs5w

Score

10^/10

mirai botnet discovery

Malware Config

Extracted

Family

mirai

Botnet

BOTNET

C2

boats.dogmuncher.xyz

89.190.156.145

Targets

- Target
  
  6ba4368af53ef8ddecb7750e60b86495bc9649fdc5370fe5e70bb59e1dd32194.elf
- Size
  
  178KB
- MD5
  
  ddf40003ed182c63697acb8769776307
- SHA1
  
  e47b3349e348df2532798fec9ef5839363b83fa7
- SHA256
  
  6ba4368af53ef8ddecb7750e60b86495bc9649fdc5370fe5e70bb59e1dd32194
- SHA512
  
  40d2e6698e86b00d900d28cdf3450b1ca117042a0f21da5b6c0b52dbcef65fc6a9efe93846c505d39d595adb48f40e0b986ff05fcc8027f00fe690ae5720f108
- SSDEEP
  
  3072:2DR+sU7Kl3IKScPxelSoAauHthDkJjYB71uGhLs5K5h0oXM/Rc9:2DR+Z7KlpScP0woAauHthDkhYHuMLs5w
Score

7^/10

discovery
- Deletes itself
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1