mirai | 3a27c7e276b504575d622f11e047ae5e2fb66c4101242beee32de5048b8496b1 | Triage

Sharing

General

Target

4528c59bd04bd8ec4cf3440685a609b9.bin
Size

93KB
Sample

241221-blgdeaymbz
MD5

c6dd1f0d90bbf207679742bafeb8b3fe
SHA1

17d2b925acaf3a4fc87e118a59968557fb41cb21
SHA256

3a27c7e276b504575d622f11e047ae5e2fb66c4101242beee32de5048b8496b1
SHA512

87b30574ac631fae06ddaa8dfcb5940ccedb82c0a4123bd2114887fbd5bcdadc45efb2c67fe8b003e4a9fe9dd803cbc6f39f40b76202da202cb79da1ca2e23c8
SSDEEP

1536:z7U0SEkyiPifhfACY2cReEKeplj4cKixdDduwyPyOK+nhgZWWoNK/eB+6BD8:z77SZyiafhfYCQ4cXdDUw2zK+nhsboex

Score

10^/10

mirai botnet discovery

Malware Config

Extracted

Family

mirai

Botnet

BOTNET

C2

boats.dogmuncher.xyz

89.190.156.145

Targets

- Target
  
  d8f8048861b5ea3320c47f44dbbc95037148ed46cba648ce6fdb3fd6f0dd0c4d.elf
- Size
  
  209KB
- MD5
  
  4528c59bd04bd8ec4cf3440685a609b9
- SHA1
  
  895498d902fec75311ab49b7743be541fb7c8bf4
- SHA256
  
  d8f8048861b5ea3320c47f44dbbc95037148ed46cba648ce6fdb3fd6f0dd0c4d
- SHA512
  
  89fb3ca4e65c5043544a5584807a1842d3e82e66a1363f650b5e6bd1cf7968a01a4a30d9c1a0120cfccad62fa51949e423af751c9f8a7d1ee8a7e1ec3a4ae571
- SSDEEP
  
  6144:GpBoH8NdRhPRJA8U3agD5tOHSAurbVEnCvCaM/RdhY:Ooc7RDJJU3aI5tOHlS5E0Cj//O
Score

7^/10

discovery
- Deletes itself
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1