Overview

overview

10

Static

static

10

Aqua.x86.elf

ubuntu-20.04-amd64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Aqua.x86.elf

  • Size

    61KB

  • Sample

    241231-paandasjbm

  • MD5

    785339a085925778d164e6048a5db5db

  • SHA1

    d5a458fda72b4e38a12d07631c198414510e9e78

  • SHA256

    25d8cb0ef26bd4c82292428f59fddd9378e664da42eb027a209b30db6ec857bf

  • SHA512

    5186f196d8633a7343df1b8104cc1aadc804bb8965869cc7d24ab929ea86635e32fee72b0789c1760236925dc074dae458448eb928a2aababe39b6c25d0e2466

  • SSDEEP

    1536:hsJzVTBEV6t+sJ9b6Vc53mqmXyyIjcA3B969X81OwIO73:uJBVEV6tZ2c9mqmXy3jlBaM1D

Score
10/10
miraibotnetdiscoverylinux

Malware Config

Extracted

Family

mirai

Botnet

BOTNET

C2

boats.dogmuncher.xyz

89.190.156.145

Targets

    • Target

      Aqua.x86.elf

    • Size

      61KB

    • MD5

      785339a085925778d164e6048a5db5db

    • SHA1

      d5a458fda72b4e38a12d07631c198414510e9e78

    • SHA256

      25d8cb0ef26bd4c82292428f59fddd9378e664da42eb027a209b30db6ec857bf

    • SHA512

      5186f196d8633a7343df1b8104cc1aadc804bb8965869cc7d24ab929ea86635e32fee72b0789c1760236925dc074dae458448eb928a2aababe39b6c25d0e2466

    • SSDEEP

      1536:hsJzVTBEV6t+sJ9b6Vc53mqmXyyIjcA3B969X81OwIO73:uJBVEV6tZ2c9mqmXy3jlBaM1D

    Score
    7/10
    discovery

    • Deletes itself

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Enumerates running processes

      Discovers information about currently running processes on the system

    behavioral1

MITRE ATT&CK Matrix

Tasks