mirai | e495466c63fe2160fd46a4230768e5df35a61895a432dbaa5cf4c3c1bdc30ab9 | Triage

Submit
Reports

Overview

overview

Static

static

5

e495466c63...b9.elf

debian-9-armhf

Sharing

General

Target

e495466c63fe2160fd46a4230768e5df35a61895a432dbaa5cf4c3c1bdc30ab9.elf
Size

21KB
Sample

241226-cx8sgavkgs
MD5

985b17fcc00dd03e78f08e636322999d
SHA1

33294faaaa3ab5a9a63087fe35576ff40b936190
SHA256

e495466c63fe2160fd46a4230768e5df35a61895a432dbaa5cf4c3c1bdc30ab9
SHA512

54cfd0c2db9d82b805c188f0d9df85c6f8c4a8ef39a57d16b26befa762c562ba87cb291a03d399ab232ab8a79193eb8637c9634df7069b2acf58af25137a343a
SSDEEP

384:TvtIoZxrSniaXs+qx+bwqPX+VOcFd5fHq52lxjnvwhymdGUop5h4:TvQn4j+ZO5fKAlx7vws3UozC

Score

10^/10

mirai lzrd botnet defense_evasion discovery upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e495466c63fe2160fd46a4230768e5df35a61895a432dbaa5cf4c3c1bdc30ab9.elf

Resource

debian9-armhf-20240611-en

mirai lzrd botnet defense_evasion discovery

debian-9-armhf

6 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

- Target
  
  e495466c63fe2160fd46a4230768e5df35a61895a432dbaa5cf4c3c1bdc30ab9.elf
- Size
  
  21KB
- MD5
  
  985b17fcc00dd03e78f08e636322999d
- SHA1
  
  33294faaaa3ab5a9a63087fe35576ff40b936190
- SHA256
  
  e495466c63fe2160fd46a4230768e5df35a61895a432dbaa5cf4c3c1bdc30ab9
- SHA512
  
  54cfd0c2db9d82b805c188f0d9df85c6f8c4a8ef39a57d16b26befa762c562ba87cb291a03d399ab232ab8a79193eb8637c9634df7069b2acf58af25137a343a
- SSDEEP
  
  384:TvtIoZxrSniaXs+qx+bwqPX+VOcFd5fHq52lxjnvwhymdGUop5h4:TvQn4j+ZO5fKAlx7vws3UozC
Score

10^/10

mirai lzrd botnet defense_evasion discovery
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Mirai family
  mirai
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
- Enumerates running processes
  Discovers information about currently running processes on the system
- Writes file to system bin folder
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mirailzrdbotnetdefense_evasiondiscovery

© 2018-2024

Terms | Privacy