Overview

overview

10

Static

static

5

Space.x86_64.elf

ubuntu-22.04-amd64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Space.x86_64.elf

  • Size

    36KB

  • Sample

    250105-a73cbsxpdj

  • MD5

    61ac2e5987ae1549b1cbf1b9c4510b10

  • SHA1

    0d98d37b2dd720b8beebc3847a2e1662862a95bf

  • SHA256

    299b08f5438ec6cc8d81126654edd5430e0229d220626a3b787e848c68d933d4

  • SHA512

    266da73ea020a65e4b81e3ef890bf0f542729826c82d572a904c7c86e284c0d6acd855404cbd4c64ea42a4ae490088e23d4d8471d4842be2093828e354a617af

  • SSDEEP

    768:b9yPVL9pDYfoWJjo+eNrHXCMaZIPTVhSb40miKx0z:epqRjo+4rHXCzIPTVh9Ni

Score
10/10
mirailzrdbotnetdefense_evasiondiscoverylinuxupx

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      Space.x86_64.elf

    • Size

      36KB

    • MD5

      61ac2e5987ae1549b1cbf1b9c4510b10

    • SHA1

      0d98d37b2dd720b8beebc3847a2e1662862a95bf

    • SHA256

      299b08f5438ec6cc8d81126654edd5430e0229d220626a3b787e848c68d933d4

    • SHA512

      266da73ea020a65e4b81e3ef890bf0f542729826c82d572a904c7c86e284c0d6acd855404cbd4c64ea42a4ae490088e23d4d8471d4842be2093828e354a617af

    • SSDEEP

      768:b9yPVL9pDYfoWJjo+eNrHXCMaZIPTVhSb40miKx0z:epqRjo+4rHXCzIPTVh9Ni

    Score
    10/10
    mirailzrdbotnetdefense_evasiondiscovery

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

      botnetmirai

    • Mirai family

      mirai

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

      defense_evasion

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Writes file to system bin folder

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks