mirai | dd642b3c6ac472cb74c3aa2284f06a1bc9b239c11d7a369be250febd98387981 | Triage

Sharing

General

Target

dd642b3c6ac472cb74c3aa2284f06a1bc9b239c11d7a369be250febd98387981.elf
Size

69KB
Sample

241209-dfapsaymdw
MD5

aa793523adb0d64168707c9130581d90
SHA1

adc0b42e308d99b057f5d4a5ac60c339b53a1f44
SHA256

dd642b3c6ac472cb74c3aa2284f06a1bc9b239c11d7a369be250febd98387981
SHA512

5947b9fc8747f8a6a56f2bde44feb60a1bc9c2ff95c68699acf7cc4526865c9294189c8169b7965c2d7ced03aab2edff6bebe4e41baccc8363b837b81d0f3c27
SSDEEP

1536:dZqo1z4SR/rusuv8dpDqz0JtSCSHorZ+nOV1i2afwZRcGSQYSOd:dwo1kSR/isuv70JtBSHorZkq1Nao8xQI

Score

10^/10

mirai kurc linux rootkit

Malware Config

Extracted

Family

mirai

Botnet

KURC

Targets

- Target
  
  dd642b3c6ac472cb74c3aa2284f06a1bc9b239c11d7a369be250febd98387981.elf
- Size
  
  69KB
- MD5
  
  aa793523adb0d64168707c9130581d90
- SHA1
  
  adc0b42e308d99b057f5d4a5ac60c339b53a1f44
- SHA256
  
  dd642b3c6ac472cb74c3aa2284f06a1bc9b239c11d7a369be250febd98387981
- SHA512
  
  5947b9fc8747f8a6a56f2bde44feb60a1bc9c2ff95c68699acf7cc4526865c9294189c8169b7965c2d7ced03aab2edff6bebe4e41baccc8363b837b81d0f3c27
- SSDEEP
  
  1536:dZqo1z4SR/rusuv8dpDqz0JtSCSHorZ+nOV1i2afwZRcGSQYSOd:dwo1kSR/isuv70JtBSHorZkq1Nao8xQI
Score

7^/10

rootkit
- Loads a kernel module
  Loads a Linux kernel module, potentially to achieve persistence
  rootkit
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1