Overview

overview

10

Static

static

10

37257ac4ac...da.elf

debian-12-mipsel

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7d5ac43f1458b7fe68f24287f9732fa8.bin

  • Size

    42KB

  • Sample

    241222-bqxk7axmet

  • MD5

    5aa91843e0c65fe25698515bfc216288

  • SHA1

    17478ff59cd6b71a3731f17a6fb0fa1e9dd5cdcc

  • SHA256

    dd3aedbe6f95373ad7621c1714424bdadbca7fa90f8670f96b9bab90c873dc18

  • SHA512

    7c52801c4f01947d97b54692f86c29412de44674175cd53a52df597b215b50eb4b8acf87011213b71b5c1bef7ae8e3b5d130a04d51eccdd52f3f5f7981e9fa8c

  • SSDEEP

    768:BAfv50N4hOUSLFTnfHnR0JzD/P4RFARkrVNcLU/nBFXPf:BAH5gUOltfHR0JzLPOAKruU/Hff

Score
10/10
miraibotnetdiscovery

Malware Config

Extracted

Family

mirai

Botnet

BOTNET

Targets

    • Target

      37257ac4ac699fd4b99d3ccc48cc79bc65194d4f400c13faf026218396cf14da.elf

    • Size

      95KB

    • MD5

      7d5ac43f1458b7fe68f24287f9732fa8

    • SHA1

      6f71e0c62e1bb10cfbfd0aae0606009cd79fe019

    • SHA256

      37257ac4ac699fd4b99d3ccc48cc79bc65194d4f400c13faf026218396cf14da

    • SHA512

      282e103cd331016d2df58543a37f3b8ab3ec073edcf88b8b1451330d34b45e2f79ef108eb27bae191eae4c336f97e842be239cc87ee509cb4ee23bfe071454e1

    • SSDEEP

      1536:XJwbamjisDu7Xj0coVRolo5Ce3El0mqB+ZPEfKELUpiYwuV04ozd:XJca62TxBeUl0mW+Fwkozd

    Score
    9/10
    discovery

    • Contacts a large (231619) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks