mirai | fe80d019b7f3b0413f2886f89b5fa01a4385afcbd3386862ab8507db003beabc | Triage

Submit
Reports

Overview

overview

Static

static

Aqua.arm5.elf

debian-9-armhf

7

Sharing

General

Target

Aqua.arm5.elf
Size

73KB
Sample

241229-bgm1dsxpek
MD5

035c27cc6ca3feb2e173031bb2577abe
SHA1

a84eef5d979eec2320eea81c2f8305239f0a39cb
SHA256

fe80d019b7f3b0413f2886f89b5fa01a4385afcbd3386862ab8507db003beabc
SHA512

bd78fa481741c017c25d5dffc32ae2371f2611dd422d8e7105b4c14c397ead6976bdae4cf8a99e90a3498ea451fb859b7ae5d878d1913c7df4487d9d1a021ecf
SSDEEP

1536:8GcEk0+/kGoDDBKhjErbwlONGR5znoyhI6SiW:8GcSRMjEPsRnxS

Score

10^/10

mirai botnet discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Aqua.arm5.elf

Resource

debian9-armhf-20240418-en

debian-9-armhf

4 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

BOTNET

C2

89.190.156.145

Targets

- Target
  
  Aqua.arm5.elf
- Size
  
  73KB
- MD5
  
  035c27cc6ca3feb2e173031bb2577abe
- SHA1
  
  a84eef5d979eec2320eea81c2f8305239f0a39cb
- SHA256
  
  fe80d019b7f3b0413f2886f89b5fa01a4385afcbd3386862ab8507db003beabc
- SHA512
  
  bd78fa481741c017c25d5dffc32ae2371f2611dd422d8e7105b4c14c397ead6976bdae4cf8a99e90a3498ea451fb859b7ae5d878d1913c7df4487d9d1a021ecf
- SSDEEP
  
  1536:8GcEk0+/kGoDDBKhjErbwlONGR5znoyhI6SiW:8GcSRMjEPsRnxS
Score

7^/10

discovery
- Deletes itself
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy