mirai | a03307afb0adfc30c418f9629fcfae26b973204222ce6664ca5ee9a2a2811e63 | Triage

Sharing

General

Target

f692d1ef6b7b90120c801f0491b71b42.bin
Size

25KB
Sample

250101-cdk73asnem
MD5

0919ad2e11da56ac89ef3237a63f404d
SHA1

641e6ea04018a2916e889052f4681e914c2e6cd9
SHA256

a03307afb0adfc30c418f9629fcfae26b973204222ce6664ca5ee9a2a2811e63
SHA512

c439996d1c4c294b037a3d2855fdce61f586cfcf2b0b03ddca612ead61da314b0691f486e16a4cd6fe35fc12153b804a2dcde9e54551ffd8c360247fc83ee13e
SSDEEP

768:cGYSFtI9liCo6lrKH52Ju5i6u12yHJ+yhIpcF1K7N1zjn:cHS4hlhKV1i2o4yhMcFoF

Score

10^/10

mirai kaizen linux rootkit

Malware Config

Extracted

Family

mirai

Botnet

KAIZEN

Targets

- Target
  
  dfc1d15d966f78e084af6259503445bc2836011fd3ce62b16c1a277717b8074d.elf
- Size
  
  52KB
- MD5
  
  f692d1ef6b7b90120c801f0491b71b42
- SHA1
  
  6a16e910910bb925488df84171ee2ed7c0f4176f
- SHA256
  
  dfc1d15d966f78e084af6259503445bc2836011fd3ce62b16c1a277717b8074d
- SHA512
  
  80b4910901539ee5d8ab6ba9858464c90a348ad8085df2ef3a9fb1eca054c367004c9b4727582c7ac37b5d8b38bca470ef6d071763cfe282f476c44c7639500e
- SSDEEP
  
  1536:PS+dEczOjRC6qf1dhWphmEB019RMEgnNxg+kC:bOjRC6qf1dhWphmEB01nMEGN+H
Score

7^/10

rootkit
- Loads a kernel module
  Loads a Linux kernel module, potentially to achieve persistence
  rootkit
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1