General

  • Target

    f0db6dd5f4fdfa71861aabd23456868437732315b06996d032e626f671dde651.elf

  • Size

    37KB

  • Sample

    241226-cza9zsvmgq

  • MD5

    da67a7a6d3b11c7188cdd1bfce41d8e7

  • SHA1

    b4b1365eb6e4ed53740bd8a9ff4ae1aaef12364a

  • SHA256

    f0db6dd5f4fdfa71861aabd23456868437732315b06996d032e626f671dde651

  • SHA512

    a17fc2653174ebdd687ed0dae8282c70eeb68b887a92f3be64006d18d0a1dadc2b611e9f9767e0660ab272883d85af924c94b8898e817373eae3b66402b6e337

  • SSDEEP

    768:Za+BWS+ZPwIIBPGpssqVuAIrRMvOGnQ55RT7iIUeLgffYyIFgbWanbcuyD7UrQRl:Za+BH+hKBZrhIynQ55BiTeLgffbJbBnw

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      f0db6dd5f4fdfa71861aabd23456868437732315b06996d032e626f671dde651.elf

    • Size

      37KB

    • MD5

      da67a7a6d3b11c7188cdd1bfce41d8e7

    • SHA1

      b4b1365eb6e4ed53740bd8a9ff4ae1aaef12364a

    • SHA256

      f0db6dd5f4fdfa71861aabd23456868437732315b06996d032e626f671dde651

    • SHA512

      a17fc2653174ebdd687ed0dae8282c70eeb68b887a92f3be64006d18d0a1dadc2b611e9f9767e0660ab272883d85af924c94b8898e817373eae3b66402b6e337

    • SSDEEP

      768:Za+BWS+ZPwIIBPGpssqVuAIrRMvOGnQ55RT7iIUeLgffYyIFgbWanbcuyD7UrQRl:Za+BH+hKBZrhIynQ55BiTeLgffbJbBnw

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

    • Mirai family

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Writes file to system bin folder

MITRE ATT&CK Enterprise v15

Tasks