General

  • Target

    boatnet.arm7.elf

  • Size

    45KB

  • Sample

    241205-llgdhsvkfr

  • MD5

    dd072aa1fb6af25fa940d2af9ecb745d

  • SHA1

    8ab9db85a4f3ba67d31de6c4a02dd4bad6e415f4

  • SHA256

    680e3ded6f5ec99342a7d36316161b9718f6515f2562d0d5898c8a4f09faf065

  • SHA512

    aad29cb3d4ab6bfdbddf5939b664d53d02c6e4648bd7b95b29b2eca81a2e9015f952b4a2aeffbb9b00438d742f4e61b7efaee1de18751171cd58e8e87fdd360b

  • SSDEEP

    768:i7ZxCMtE5CUbgAqLDfYko9S5FDfrYnLFnWJ5y9q3UELo8q0ln5fhZX9uOahg:iV4KE5C+ghLDgktFfwRnK5nL5Tn55ZAE

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      boatnet.arm7.elf

    • Size

      45KB

    • MD5

      dd072aa1fb6af25fa940d2af9ecb745d

    • SHA1

      8ab9db85a4f3ba67d31de6c4a02dd4bad6e415f4

    • SHA256

      680e3ded6f5ec99342a7d36316161b9718f6515f2562d0d5898c8a4f09faf065

    • SHA512

      aad29cb3d4ab6bfdbddf5939b664d53d02c6e4648bd7b95b29b2eca81a2e9015f952b4a2aeffbb9b00438d742f4e61b7efaee1de18751171cd58e8e87fdd360b

    • SSDEEP

      768:i7ZxCMtE5CUbgAqLDfYko9S5FDfrYnLFnWJ5y9q3UELo8q0ln5fhZX9uOahg:iV4KE5C+ghLDgktFfwRnK5nL5Tn55ZAE

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

    • Mirai family

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Writes file to system bin folder

MITRE ATT&CK Enterprise v15

Tasks