General

  • Target

    467f8730b3df7738935b68efa0309ed7b154dc14ca2e87d04e00fddd49d34a2e.elf

  • Size

    37KB

  • Sample

    241217-c4gybsyngq

  • MD5

    47a3da5b7a3334ad0d7d3e319d5e5876

  • SHA1

    8710045d8e4ad5ab0561af69d328ba5bfe85ae85

  • SHA256

    467f8730b3df7738935b68efa0309ed7b154dc14ca2e87d04e00fddd49d34a2e

  • SHA512

    498eca619092e02b0529e37b710c8ae2b4cc23f4afb13b46dc90d67b9f5a17e46e32cc4964469a749e4adc7670ad2718f40387950069106a9f0b2507738334ab

  • SSDEEP

    768:EyI187beFSc+RX4qCw7kwGDGRfHBoHJgGlzDpbuR1JI:Eyf7beMbIqCw7jcGXoFVJuK

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      467f8730b3df7738935b68efa0309ed7b154dc14ca2e87d04e00fddd49d34a2e.elf

    • Size

      37KB

    • MD5

      47a3da5b7a3334ad0d7d3e319d5e5876

    • SHA1

      8710045d8e4ad5ab0561af69d328ba5bfe85ae85

    • SHA256

      467f8730b3df7738935b68efa0309ed7b154dc14ca2e87d04e00fddd49d34a2e

    • SHA512

      498eca619092e02b0529e37b710c8ae2b4cc23f4afb13b46dc90d67b9f5a17e46e32cc4964469a749e4adc7670ad2718f40387950069106a9f0b2507738334ab

    • SSDEEP

      768:EyI187beFSc+RX4qCw7kwGDGRfHBoHJgGlzDpbuR1JI:Eyf7beMbIqCw7jcGXoFVJuK

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

    • Mirai family

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Writes file to system bin folder

MITRE ATT&CK Enterprise v15

Tasks