Overview

overview

10

Static

static

5

6f4b2ca721...ae.elf

debian-9-mips

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2af268efed968357e391ab576fc973c4.bin

  • Size

    29KB

  • Sample

    250101-bk2mysynhs

  • MD5

    5d2dec4403870ae3cc7017676a83bdbd

  • SHA1

    de1c101d78d0e4cafbf343d5ccb7c381cba8b9e3

  • SHA256

    c991af8d3d151fec6640393db50054eeaabe6e692840d433ece06f618cfc6af6

  • SHA512

    1fc05eefb19d7b3c58ceeaecf82edf2d33db21de0584aaa576cde59d91dc7ea4cd6a0cdc51c798e28cde872628f42a7373c6e79379848697849d862d9cdf14d0

  • SSDEEP

    768:KkdX9pEtwWpDdeOGjDK8z64+hYQHJN4iddCw:NGtFDdeNtm4+hYYCidIw

Score
10/10
mirailzrdbotnetdefense_evasiondiscoveryupx

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      6f4b2ca72110e08f4a14ccfe634cfe7296914e8e8c65e4de037d3c85f40101ae.elf

    • Size

      31KB

    • MD5

      2af268efed968357e391ab576fc973c4

    • SHA1

      90d2eb946f39110a1a1768de197d5b2592c32906

    • SHA256

      6f4b2ca72110e08f4a14ccfe634cfe7296914e8e8c65e4de037d3c85f40101ae

    • SHA512

      753e6159a6085f846ad7bc6cddf5d0eae592351ada2b344fdbd8c0ce2b6981746b579085f373634adcbd29668cf9ce1979fa7a5f58f05f5bbee6f5405e52c4f1

    • SSDEEP

      768:hROI+KZnfryc3i9gtz8ubtmMP1USJgGlzDpbuR1JO:ywnDVYuxmMuWVJuY

    Score
    10/10
    mirailzrdbotnetdefense_evasiondiscovery

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

      botnetmirai

    • Mirai family

      mirai

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

      defense_evasion

    • Writes file to system bin folder

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks