mirai | 23b7d13eac7a7440b4d7c8ef07d8bb77346be4edd58d659bb7a05aa551295bf9 | Triage

Submit
Reports

Overview

overview

Static

static

5

.Sx86_64.elf

ubuntu-24.04-amd64

Sharing

General

Target

.Sx86_64.elf
Size

33KB
Sample

241230-bn3dnasqhx
MD5

81a79191b66811aab9fc1fba72f6b09d
SHA1

76b03ebcc6a07f5bba4caac7d35cb2d8cd60f35b
SHA256

23b7d13eac7a7440b4d7c8ef07d8bb77346be4edd58d659bb7a05aa551295bf9
SHA512

66e356ab9490aec7d4ce1f2e5eccb06f593cfaf0a415f6f92333b49ad26801be5f317becba77859dab50f296a29d41ace90417915d3a918c4d5ed88cfb5c204a
SSDEEP

768:CSZt5YsWGQLgseUBsjg5TUQt2MDxImC82/SJiuh1qUv7KnYWgEixWb8rx0I4:CSZt5vWGQMseUBsjgxhkmEQDKRgEixkT

Score

10^/10

mirai botnet discovery linux upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

.Sx86_64.elf

Resource

ubuntu2404-amd64-20240523-en

mirai botnet discovery

ubuntu-24.04-amd64

8 signatures

150 seconds

Malware Config

Extracted

Family

mirai

C2

e.xijinping.mov

Targets

- Target
  
  .Sx86_64.elf
- Size
  
  33KB
- MD5
  
  81a79191b66811aab9fc1fba72f6b09d
- SHA1
  
  76b03ebcc6a07f5bba4caac7d35cb2d8cd60f35b
- SHA256
  
  23b7d13eac7a7440b4d7c8ef07d8bb77346be4edd58d659bb7a05aa551295bf9
- SHA512
  
  66e356ab9490aec7d4ce1f2e5eccb06f593cfaf0a415f6f92333b49ad26801be5f317becba77859dab50f296a29d41ace90417915d3a918c4d5ed88cfb5c204a
- SSDEEP
  
  768:CSZt5YsWGQLgseUBsjg5TUQt2MDxImC82/SJiuh1qUv7KnYWgEixWb8rx0I4:CSZt5vWGQMseUBsjgxhkmEQDKRgEixkT
Score

10^/10

mirai botnet discovery
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Mirai family
  mirai
- Deletes itself
- Traces itself
  Traces itself to prevent debugging attempts
- Writes file to system bin folder
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

miraibotnetdiscovery

© 2018-2025

Terms | Privacy