General

  • Target

    083aba1f74c9302697ab2c7442799b4bb7f0cd77d4fc8310f2460a9c087f3704.elf

  • Size

    37KB

  • Sample

    241217-cg372sxjby

  • MD5

    1117e2c5a98d68c484fd112dab8f93c6

  • SHA1

    752445f32f9bc8387d51c38a6c91f9b7ad67cdf6

  • SHA256

    083aba1f74c9302697ab2c7442799b4bb7f0cd77d4fc8310f2460a9c087f3704

  • SHA512

    f72812645a532dfe4984e1de484eaa0e1819ff0d29570ce6594a175a865dad0365740d1004578e06803ab217960be3debfa604cbf04f0144239068e4685c62ab

  • SSDEEP

    768:5hpGLq2YEQh5q10MxYWt/y/1tgPUcDp+Rl5DQBXWr:HpD2Ynjq10Qt/U89wRl50s

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      083aba1f74c9302697ab2c7442799b4bb7f0cd77d4fc8310f2460a9c087f3704.elf

    • Size

      37KB

    • MD5

      1117e2c5a98d68c484fd112dab8f93c6

    • SHA1

      752445f32f9bc8387d51c38a6c91f9b7ad67cdf6

    • SHA256

      083aba1f74c9302697ab2c7442799b4bb7f0cd77d4fc8310f2460a9c087f3704

    • SHA512

      f72812645a532dfe4984e1de484eaa0e1819ff0d29570ce6594a175a865dad0365740d1004578e06803ab217960be3debfa604cbf04f0144239068e4685c62ab

    • SSDEEP

      768:5hpGLq2YEQh5q10MxYWt/y/1tgPUcDp+Rl5DQBXWr:HpD2Ynjq10Qt/U89wRl50s

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

    • Mirai family

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Writes file to system bin folder

MITRE ATT&CK Enterprise v15

Tasks