General

  • Target

    2e71415282819431dc21990148d312a268b9ba3f6a3f30de65b1fbece0daf916.elf

  • Size

    61KB

  • Sample

    241217-cwjf7aylgp

  • MD5

    593921b0d2fb2b66221ba1b29d3db579

  • SHA1

    84fa95c60f1f8c330d5d8b82f5c7b9d6eb67edcd

  • SHA256

    2e71415282819431dc21990148d312a268b9ba3f6a3f30de65b1fbece0daf916

  • SHA512

    92c57b195cd9af1351cf1f14b2dea7a10d07d6966ed6c023636aeb9a2d079219ed17abb864f875fbfc6b5657f57ab08a6a1d74fbea6117d4b8dc257728837736

  • SSDEEP

    1536:dpmbSQ6U3q7cCBT/lZsK/0DiQ54LiKimfFoktCe3fYRMJ:WShU3q7cEDlCK/0Du9i8Fok06fYRO

Malware Config

Extracted

Family

mirai

C2

230.btc-f2pool.top

Targets

    • Target

      2e71415282819431dc21990148d312a268b9ba3f6a3f30de65b1fbece0daf916.elf

    • Size

      61KB

    • MD5

      593921b0d2fb2b66221ba1b29d3db579

    • SHA1

      84fa95c60f1f8c330d5d8b82f5c7b9d6eb67edcd

    • SHA256

      2e71415282819431dc21990148d312a268b9ba3f6a3f30de65b1fbece0daf916

    • SHA512

      92c57b195cd9af1351cf1f14b2dea7a10d07d6966ed6c023636aeb9a2d079219ed17abb864f875fbfc6b5657f57ab08a6a1d74fbea6117d4b8dc257728837736

    • SSDEEP

      1536:dpmbSQ6U3q7cCBT/lZsK/0DiQ54LiKimfFoktCe3fYRMJ:WShU3q7cEDlCK/0Du9i8Fok06fYRO

    • Contacts a large (38133) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

MITRE ATT&CK Enterprise v15

Tasks