mirai | 8a3990a2945e474d2079b01cea98483a2a07ee2c6c7af9eb46cca9078452c145

General

Target

MALWARE_AQUA.zip
Size

491KB
Sample

250109-e69r8sylgz
MD5

583705eade1b4f4a56ae9586065ad4f4
SHA1

96a24ffc6cb2c2a76802d3c96d78c1c93a0d7cb4
SHA256

8a3990a2945e474d2079b01cea98483a2a07ee2c6c7af9eb46cca9078452c145
SHA512

f1801f84da028fbb6b3b8b9cd4dc0241f1171db7ffd20a89ec86ea73b6e1d9001c78e1955ecd2181df5c06e34e66597fd3332f85a7a7b76c2d9b56905a5bedc4
SSDEEP

12288:tlEmSWz792IDyepY1uXoqU2w85JifC0GcY6RT7748KdQj+an+8:tlEWNdDyGoqUm5Jh0C6ZY8Ktan+8

Score

10^/10

Malware Config

Extracted

Family

mirai

Botnet

BOTNET

C2

89.190.156.145

boats.dogmuncher.xyz

Extracted

Family

mirai

Botnet

BOTNET

C2

boats.dogmuncher.xyz

89.190.156.145

Extracted

Family

mirai

Botnet

BOTNET

C2

boats.dogmuncher.xyz

89.190.156.145

Extracted

Family

mirai

Botnet

BOTNET

C2

boats.dogmuncher.xyz

89.190.156.145

Extracted

Family

mirai

C2

89.190.156.145

Extracted

Family

mirai

Botnet

BOTNET

C2

boats.dogmuncher.xyz

Targets

- Target
  
  MALWARE_AQUA/Aqua.mips
- Size
  
  99KB
- MD5
  
  b0cb7b6d60333527dbc0219c8a89007a
- SHA1
  
  a203f1026b8be2dcec10197733bf04ae1a29d97f
- SHA256
  
  d17bea13321535fbc4875edca84dfd6878dd09a4ecc7a57d4b41f1396d3ce3d8
- SHA512
  
  d4ed414c3a7122012245ae4d954930db679a8dca078c4f5e047969eeae9ae71fc6bd6d0c01761bc066ecb97a4f512d03c5fe54d58944aea691e5b02abe392a76
- SSDEEP
  
  1536:rzpIP811qxa0qw1KLIpPdB/o3T8e9m4//QSiWL7:JIP8HqvPdFo3TN/bL7
Score

7^/10

discovery
- Deletes itself
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1 behavioral2
- Target
  
  MALWARE_AQUA/Aqua.mpsl
- Size
  
  99KB
- MD5
  
  7bb031dae70313f86cea566e1f9befb8
- SHA1
  
  df961a253539710d0536f4d71ab99e427182652d
- SHA256
  
  870cdb772ccaccbec226b36358940b116d95502bad2b55d2b4fb52478dd27cec
- SHA512
  
  01986c08f0c6e87017086355d8589dfba08a47b59af37de6b9655a924973a402133bf17c4ccb7229e4e8a5484f69c02c21d1d108f3c6f28429f837c0dc2adbdc
- SSDEEP
  
  1536:jHUYxWHuWXEtOs23Mq4WEqMRsiCzZXTvgstW4CZJqewYVn2GJXTAYWg2GSio:j0YxWHqyyaFXTvDHCxrt1Y
Score

7^/10

discovery
- Deletes itself
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

1

T1016

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Extracted

Extracted

Extracted

Extracted

Extracted

Targets

Deletes itself

Enumerates running processes

Deletes itself

Enumerates running processes

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4