General
-
Target
bot.arm7.elf
-
Size
182KB
-
Sample
241127-1gfzhs1qas
-
MD5
55fff637ad2247510526d8745abad3c2
-
SHA1
758fad13293dcb683db84449a5949384ae4255d6
-
SHA256
e89740393b2eaa762d9de711ea7c903fa0fc3bfdae59631d72a0c2dd5c11931f
-
SHA512
01d8cc7dae9b16c7e821822541dced0250cac1e8f7d15c23c22e7d8a0bcd34f0e8c4fdefe2c0cb0b00666f4da618a68762e6911240914d4c4e108fd27c90c43c
-
SSDEEP
3072:PElcCbm2Pynp7kFaVA8GvMcMlVsqQo671/PjkoQVM/RNG:PElrXPypwFaVA8GEcqyom1/rpQVM/Rs
Behavioral task
behavioral1
Sample
bot.arm7.elf
Resource
debian9-armhf-20240729-en
Malware Config
Extracted
mirai
penis.elite-api.su
Targets
-
-
Target
bot.arm7.elf
-
Size
182KB
-
MD5
55fff637ad2247510526d8745abad3c2
-
SHA1
758fad13293dcb683db84449a5949384ae4255d6
-
SHA256
e89740393b2eaa762d9de711ea7c903fa0fc3bfdae59631d72a0c2dd5c11931f
-
SHA512
01d8cc7dae9b16c7e821822541dced0250cac1e8f7d15c23c22e7d8a0bcd34f0e8c4fdefe2c0cb0b00666f4da618a68762e6911240914d4c4e108fd27c90c43c
-
SSDEEP
3072:PElcCbm2Pynp7kFaVA8GvMcMlVsqQo671/PjkoQVM/RNG:PElrXPypwFaVA8GEcqyom1/rpQVM/Rs
Score7/10-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Enumerates running processes
Discovers information about currently running processes on the system
-