mirai | c1027350e9cb38189256c744e30a991f2cc7045c80beb5b77eb50cabef45a4ec | Triage

Submit
Reports

Overview

overview

Static

static

Josho.x86.elf

ubuntu-24.04-amd64

9

Sharing

General

Target

Josho.x86.elf
Size

48KB
Sample

241210-w6lh3syjer
MD5

ae505017788c6fb7c7bceb873ddbc186
SHA1

08f86d53b68930fe8ef690ef58b064dd02830210
SHA256

c1027350e9cb38189256c744e30a991f2cc7045c80beb5b77eb50cabef45a4ec
SHA512

38e0193a1619f2026cfde566ac945310b4e5c6b0b946c8e08d413b15562672e93da18b121f235bac5d9a64cea171c669a88d661fe197717de59cc8b4a0a8ee7d
SSDEEP

1536:4LInPCqAAXJLE7cxtdw8NAqBNMsvk9YXPSP0Hoa:FCqxpE7cxtdw0Aqvjvk9sSMHz

Score

10^/10

mirai josho discovery linux rootkit

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Josho.x86.elf

Resource

ubuntu2404-amd64-20240523-en

discovery rootkit

ubuntu-24.04-amd64

4 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

JOSHO

Targets

- Target
  
  Josho.x86.elf
- Size
  
  48KB
- MD5
  
  ae505017788c6fb7c7bceb873ddbc186
- SHA1
  
  08f86d53b68930fe8ef690ef58b064dd02830210
- SHA256
  
  c1027350e9cb38189256c744e30a991f2cc7045c80beb5b77eb50cabef45a4ec
- SHA512
  
  38e0193a1619f2026cfde566ac945310b4e5c6b0b946c8e08d413b15562672e93da18b121f235bac5d9a64cea171c669a88d661fe197717de59cc8b4a0a8ee7d
- SSDEEP
  
  1536:4LInPCqAAXJLE7cxtdw8NAqBNMsvk9YXPSP0Hoa:FCqxpE7cxtdw0Aqvjvk9sSMHz
Score

9^/10

discovery rootkit
- Contacts a large (48291) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Loads a kernel module
  Loads a Linux kernel module, potentially to achieve persistence
  rootkit
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryrootkit

© 2018-2025

Terms | Privacy