General

  • Target

    ffc6963fc259a5f67ac4054f90807c8717db2ca63ef1c27cd4b993b467269034.elf

  • Size

    24KB

  • Sample

    241215-evdweswjbk

  • MD5

    f653a0880c96e3153f919f6a9d05f61c

  • SHA1

    d1ece4b4250b5462598ef06f34140339f0b22a25

  • SHA256

    ffc6963fc259a5f67ac4054f90807c8717db2ca63ef1c27cd4b993b467269034

  • SHA512

    0af2f0d1128b06e6c751c817262498f4957480b4714ba00c49651e72c546edc90a4775271e397251e7620d89c82ecc7a37db0fc718769b67d094fb1642930924

  • SSDEEP

    768:obrQlS07dEv0UXqUhvQE+CXQKMQKCXBpIZqSWvg:4QlS07FUXqIYSXQKquwq4

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      ffc6963fc259a5f67ac4054f90807c8717db2ca63ef1c27cd4b993b467269034.elf

    • Size

      24KB

    • MD5

      f653a0880c96e3153f919f6a9d05f61c

    • SHA1

      d1ece4b4250b5462598ef06f34140339f0b22a25

    • SHA256

      ffc6963fc259a5f67ac4054f90807c8717db2ca63ef1c27cd4b993b467269034

    • SHA512

      0af2f0d1128b06e6c751c817262498f4957480b4714ba00c49651e72c546edc90a4775271e397251e7620d89c82ecc7a37db0fc718769b67d094fb1642930924

    • SSDEEP

      768:obrQlS07dEv0UXqUhvQE+CXQKMQKCXBpIZqSWvg:4QlS07FUXqIYSXQKquwq4

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

    • Mirai family

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Writes file to system bin folder

MITRE ATT&CK Enterprise v15

Tasks