mirai | 7e8e119354526c4261df902d908ee1e2d2ebfba41086b5d13a1e182de5c3f912 | Triage

Submit
Reports

Overview

overview

Static

static

Aqua.arm4.elf

debian-9-armhf

7

Sharing

General

Target

Aqua.arm4.elf
Size

75KB
Sample

241225-t1x9ksynbr
MD5

0ffcddb18c465c97e05d87ae18b616c3
SHA1

b5211064fc8e44bb5076c78932d9e77cbeaa4c42
SHA256

7e8e119354526c4261df902d908ee1e2d2ebfba41086b5d13a1e182de5c3f912
SHA512

84e731d5475ddd32eee7c8d59104e6baf60c8f9827a2ea707d74e9eead5488e2e12a7945bee886667ac28c84f4bf9b163b1949b86908398e087f20f38b8f5bf9
SSDEEP

1536:7wfr0cBK047tHS6vn/iIp3dZ+wlOCRiT2kX+SPSettRWSiG:7wfz2F6Ixe/tV

Score

10^/10

mirai botnet discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Aqua.arm4.elf

Resource

debian9-armhf-20240418-en

debian-9-armhf

4 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

BOTNET

C2

89.190.156.145

Targets

- Target
  
  Aqua.arm4.elf
- Size
  
  75KB
- MD5
  
  0ffcddb18c465c97e05d87ae18b616c3
- SHA1
  
  b5211064fc8e44bb5076c78932d9e77cbeaa4c42
- SHA256
  
  7e8e119354526c4261df902d908ee1e2d2ebfba41086b5d13a1e182de5c3f912
- SHA512
  
  84e731d5475ddd32eee7c8d59104e6baf60c8f9827a2ea707d74e9eead5488e2e12a7945bee886667ac28c84f4bf9b163b1949b86908398e087f20f38b8f5bf9
- SSDEEP
  
  1536:7wfr0cBK047tHS6vn/iIp3dZ+wlOCRiT2kX+SPSettRWSiG:7wfz2F6Ixe/tV
Score

7^/10

discovery
- Deletes itself
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy