mirai | 681951c3fa70c2d14fe48e3c829f9f62f04f8fa9b430c0a87e849e397333dc16 | Triage

Submit
Reports

Overview

overview

Static

static

5

x86_64.elf

ubuntu-22.04-amd64

Sharing

General

Target

x86_64.elf
Size

28KB
Sample

241211-1q284stqfr
MD5

9cc970e0631afa61a049848f4f368b12
SHA1

54d7d99f436e9c97da5bfdd43698bb1dbd679b29
SHA256

681951c3fa70c2d14fe48e3c829f9f62f04f8fa9b430c0a87e849e397333dc16
SHA512

9f5bcd759af164b0e22479d44806dce6d3ca3e2b62fa3ac154b83111804cd1ee1df4b549fff0e8ab72d2a2d66dadb0f8f1cc301fee83a711e5c4055c2ee3567e
SSDEEP

768:UlmwYncmzvo2+XA9rVVTe0OoLEyFpX+pN2MX:UzYnvzxpVFeToR7X+pkMX

Score

10^/10

mirai botnet botnet defense_evasion discovery linux upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

x86_64.elf

Resource

ubuntu2204-amd64-20240611-en

mirai botnet botnet defense_evasion discovery

ubuntu-22.04-amd64

8 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

BOTNET

Targets

- Target
  
  x86_64.elf
- Size
  
  28KB
- MD5
  
  9cc970e0631afa61a049848f4f368b12
- SHA1
  
  54d7d99f436e9c97da5bfdd43698bb1dbd679b29
- SHA256
  
  681951c3fa70c2d14fe48e3c829f9f62f04f8fa9b430c0a87e849e397333dc16
- SHA512
  
  9f5bcd759af164b0e22479d44806dce6d3ca3e2b62fa3ac154b83111804cd1ee1df4b549fff0e8ab72d2a2d66dadb0f8f1cc301fee83a711e5c4055c2ee3567e
- SSDEEP
  
  768:UlmwYncmzvo2+XA9rVVTe0OoLEyFpX+pN2MX:UzYnvzxpVFeToR7X+pkMX
Score

10^/10

mirai botnet botnet defense_evasion discovery
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Mirai family
  mirai
- Contacts a large (113093) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

miraibotnetbotnetdefense_evasiondiscovery

© 2018-2025

Terms | Privacy