mirai | 488456627ab86b2c02d8459bb79cad66da03a2a5647b939db2de7793167b586e | Triage

Sharing

General

Target

d6932c83a19ed6cd9a071ca4f245107b_JaffaCakes118
Size

50KB
Sample

241208-mhnh4a1kby
MD5

d6932c83a19ed6cd9a071ca4f245107b
SHA1

eaae39f0f8406330ee7673a175032aaeee692569
SHA256

488456627ab86b2c02d8459bb79cad66da03a2a5647b939db2de7793167b586e
SHA512

063742b40c6b8dcb0528b11718e01c3c78ecfe8e0920e0b3a9c18c929aa757c43610a0ee68d778933d637608f65fe4029772033ca7b402052b9dc1e8154895a1
SSDEEP

1536:0O+4CWoZW3raj1/gjWejOI9lF9dT9u6gxvtg2S3VD:wemR/gOwlh5ARtgvVD

Score

10^/10

mirai wicked linux rootkit

Malware Config

Extracted

Family

mirai

Botnet

WICKED

Targets

- Target
  
  d6932c83a19ed6cd9a071ca4f245107b_JaffaCakes118
- Size
  
  50KB
- MD5
  
  d6932c83a19ed6cd9a071ca4f245107b
- SHA1
  
  eaae39f0f8406330ee7673a175032aaeee692569
- SHA256
  
  488456627ab86b2c02d8459bb79cad66da03a2a5647b939db2de7793167b586e
- SHA512
  
  063742b40c6b8dcb0528b11718e01c3c78ecfe8e0920e0b3a9c18c929aa757c43610a0ee68d778933d637608f65fe4029772033ca7b402052b9dc1e8154895a1
- SSDEEP
  
  1536:0O+4CWoZW3raj1/gjWejOI9lF9dT9u6gxvtg2S3VD:wemR/gOwlh5ARtgvVD
Score

7^/10

rootkit
- Loads a kernel module
  Loads a Linux kernel module, potentially to achieve persistence
  rootkit
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1