Overview

overview

10

Static

static

10

86d0e5b509...1aa0ff

ubuntu-22.04-amd64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_8ce4652191c15808ab7415882143426105d7820863764496910c55cacd6715dd

  • Size

    39KB

  • Sample

    241226-wr1dpatmfz

  • MD5

    3e0a3788b97d93bd467e17257aae1987

  • SHA1

    b7e163e4470615f5cc7759a2ce84762798b03101

  • SHA256

    8ce4652191c15808ab7415882143426105d7820863764496910c55cacd6715dd

  • SHA512

    9ad5161c36f282aba5bd3e172fe00bb12c6f44d6d4468db58dfb0415778939786fb6ba73528a9cd94d9b9d7558f8911f5ed26835b0792320fa5d3d768715d185

  • SSDEEP

    768:xHkhdS1hXitcw1aYIXAIgnmbHthLHWmWgNT+02gVP0HHOJWU:ydS1IP1aY0fHXvq02QcHHW

Score
10/10
miraimiraidefense_evasiondiscoverylinux

Malware Config

Extracted

Family

mirai

Botnet

MIRAI

Targets

    • Target

      86d0e5b509dfb50af7262fdbbd73581ec2e4d326017baf2e474b7e064b1aa0ff

    • Size

      72KB

    • MD5

      45cdb8fd89b4b9c1f8d937a5259bcc7f

    • SHA1

      1ffcb55283959f76e67cfad167d9aadb14a60d2e

    • SHA256

      86d0e5b509dfb50af7262fdbbd73581ec2e4d326017baf2e474b7e064b1aa0ff

    • SHA512

      769e09a7cc7ca45d6b92fd39ada4a89ff208fdc579370d916bdeb0387be6a907586897c4b4a28c3ec4ad11fdffe83aa13960f0afb92eba47d05c0a33315339de

    • SSDEEP

      1536:NKjmbMxScPcKXKx1aFkEzPd6PbJThUrkt91WxFe8gci9m+LJhO0Bp7lwbZnI:NKjHx55XK7aF/rd6PbBXoxFeii9J1hOI

    Score
    9/10
    defense_evasiondiscovery

    • Contacts a large (23989) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

      defense_evasion
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks