General

  • Target

    b9c2326f4b414646be35eb41f2606980c180a5ea78826ef7920bba190e98fb05.elf

  • Size

    82KB

  • Sample

    241217-e118xa1phr

  • MD5

    3522a0c3157353be36cedf472b491c49

  • SHA1

    e3ead805256cd1697c04c12ff4bc4c838bc7d8e0

  • SHA256

    b9c2326f4b414646be35eb41f2606980c180a5ea78826ef7920bba190e98fb05

  • SHA512

    fb1cac830174b9003506545e1c85652b8c4cc570a8cc17d84cdef690cf9512cbba8bdfb9daab25ead32eb3296d1b2d6097b845467dab501d5069e4080502a877

  • SSDEEP

    1536:iVLyu95KRJkj752dCexuV/8UZlDwfkJ4MYfWy:iVLyMgGFezxu5VD1eX

Malware Config

Extracted

Family

mirai

C2

230.btc-f2pool.top

Targets

    • Target

      b9c2326f4b414646be35eb41f2606980c180a5ea78826ef7920bba190e98fb05.elf

    • Size

      82KB

    • MD5

      3522a0c3157353be36cedf472b491c49

    • SHA1

      e3ead805256cd1697c04c12ff4bc4c838bc7d8e0

    • SHA256

      b9c2326f4b414646be35eb41f2606980c180a5ea78826ef7920bba190e98fb05

    • SHA512

      fb1cac830174b9003506545e1c85652b8c4cc570a8cc17d84cdef690cf9512cbba8bdfb9daab25ead32eb3296d1b2d6097b845467dab501d5069e4080502a877

    • SSDEEP

      1536:iVLyu95KRJkj752dCexuV/8UZlDwfkJ4MYfWy:iVLyMgGFezxu5VD1eX

    • Contacts a large (34288) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

MITRE ATT&CK Enterprise v15

Tasks