mirai | d79063e5ed2863b2656c7263c542bf062c998d2db2cbcd4d46f3e48e9a398e85 | Triage

Submit
Reports

Overview

overview

Static

static

5

sora.mips.elf

debian-9-mips

Sharing

General

Target

sora.mips.elf
Size

28KB
Sample

241208-qgvgsszjaq
MD5

adeb93ef00e2bd4895db6f148fdece67
SHA1

f9528d195826e73bfd5528c025934246c4d708c1
SHA256

d79063e5ed2863b2656c7263c542bf062c998d2db2cbcd4d46f3e48e9a398e85
SHA512

c9077564c3d1d5add56bf033983880cce6815ef5f661c4a934cde6e3cc4a8badcf6cbc0c68cafef106813dee3ab480707ecbadd4795b51ee26653361c89c6b1f
SSDEEP

768:/xMWBhAHuLegF1aF4NscfOl8liV5uJgGlzDpbuR1Jx:/xdBGuLea19acfjliSVJur

Score

10^/10

mirai sora botnet defense_evasion discovery upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

sora.mips.elf

Resource

debian9-mipsbe-20240611-en

mirai sora botnet defense_evasion discovery

debian-9-mips

8 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

SORA

Targets

- Target
  
  sora.mips.elf
- Size
  
  28KB
- MD5
  
  adeb93ef00e2bd4895db6f148fdece67
- SHA1
  
  f9528d195826e73bfd5528c025934246c4d708c1
- SHA256
  
  d79063e5ed2863b2656c7263c542bf062c998d2db2cbcd4d46f3e48e9a398e85
- SHA512
  
  c9077564c3d1d5add56bf033983880cce6815ef5f661c4a934cde6e3cc4a8badcf6cbc0c68cafef106813dee3ab480707ecbadd4795b51ee26653361c89c6b1f
- SSDEEP
  
  768:/xMWBhAHuLegF1aF4NscfOl8liV5uJgGlzDpbuR1Jx:/xdBGuLea19acfjliSVJur
Score

10^/10

mirai sora botnet defense_evasion discovery
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Mirai family
  mirai
- Contacts a large (49238) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Network Service Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

miraisorabotnetdefense_evasiondiscovery

© 2018-2025

Terms | Privacy