General

  • Target

    cb682ce20d0afc274cd99b9887059f1c6a548c29ddae763bf8785adb9fb8c934.elf

  • Size

    60KB

  • Sample

    241121-kdlgts1djl

  • MD5

    da97620c8413c5ee36534de7c981ef89

  • SHA1

    6d92fc519ae01744c14321ae66edd3f930da1298

  • SHA256

    cb682ce20d0afc274cd99b9887059f1c6a548c29ddae763bf8785adb9fb8c934

  • SHA512

    e024affe5b3065f94989f092160fb07cd27dccb08dde17d31ee0bc6326484dd14044f9aac848db2a2074a9b595bbd0a673d547e18015af9d5962224f2667de3a

  • SSDEEP

    1536:zVQSmwtMJXmejtHLVOBCLTM5Tfv83KJ2crl2EWT:zVywt8XZ5LYBCLgTX83KHl2EWT

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      cb682ce20d0afc274cd99b9887059f1c6a548c29ddae763bf8785adb9fb8c934.elf

    • Size

      60KB

    • MD5

      da97620c8413c5ee36534de7c981ef89

    • SHA1

      6d92fc519ae01744c14321ae66edd3f930da1298

    • SHA256

      cb682ce20d0afc274cd99b9887059f1c6a548c29ddae763bf8785adb9fb8c934

    • SHA512

      e024affe5b3065f94989f092160fb07cd27dccb08dde17d31ee0bc6326484dd14044f9aac848db2a2074a9b595bbd0a673d547e18015af9d5962224f2667de3a

    • SSDEEP

      1536:zVQSmwtMJXmejtHLVOBCLTM5Tfv83KJ2crl2EWT:zVywt8XZ5LYBCLgTX83KHl2EWT

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

    • Mirai family

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Writes file to system bin folder

MITRE ATT&CK Enterprise v15

Tasks