mirai | ee6f0f3643fdc89577b0810470dcac40a5b3e5f29e443afde45786d722b2362d | Triage

Sharing

General

Target

741-1-0x00400000-0x00452a58-memory.dmp
Size

73KB
Sample

241227-c8xjkszpgx
MD5

746659d14bdecbaab591257fc83d2904
SHA1

71cdbb52500eb7c3a1c082e17b6ed8c3a7338bb8
SHA256

ee6f0f3643fdc89577b0810470dcac40a5b3e5f29e443afde45786d722b2362d
SHA512

2f28980b3c0277cea0b09452fcc72e47e833083691d02e62c7316333a2f4dbd381f082b55a21537623aa4516a0a1916664ef459820e96aab627c7cb92011ed2c
SSDEEP

1536:oJPEBmW5iNWqcGTkwnXHZ84OqdZerESt9P:oJPEB8NWq9hqqd0l

Score

10^/10

mirai lzrd defense_evasion discovery

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

- Target
  
  741-1-0x00400000-0x00452a58-memory.dmp
- Size
  
  73KB
- MD5
  
  746659d14bdecbaab591257fc83d2904
- SHA1
  
  71cdbb52500eb7c3a1c082e17b6ed8c3a7338bb8
- SHA256
  
  ee6f0f3643fdc89577b0810470dcac40a5b3e5f29e443afde45786d722b2362d
- SHA512
  
  2f28980b3c0277cea0b09452fcc72e47e833083691d02e62c7316333a2f4dbd381f082b55a21537623aa4516a0a1916664ef459820e96aab627c7cb92011ed2c
- SSDEEP
  
  1536:oJPEBmW5iNWqcGTkwnXHZ84OqdZerESt9P:oJPEB8NWq9hqqd0l
Score

7^/10

defense_evasion discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
- Writes file to system bin folder
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery