Overview

overview

10

Static

static

5

3cdfe20a0f...b3.elf

debian-12-mipsel

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4c239b88c1d333308ed42706769d14c6.bin

  • Size

    23KB

  • Sample

    250110-bpjmyayqbn

  • MD5

    a3759e3e3949e95090d79714301a3a5a

  • SHA1

    72cc83ffff82021274e4dbf905f22813a04612b9

  • SHA256

    ca566edaccab0a446301ee5c228dcb530bbcfd9d3478ad017e83c523fc558067

  • SHA512

    c9dd862b808927cf5dc29258b2533cf57990717c7d7b2cd15c525486197c7c26687bce0795b61edbad7a4cbe7e56d34b773a836a2c15e4731e15efd17b3db051

  • SSDEEP

    384:GW/93uxUoaJ4Wz6Z207Kt3Zv9JioCw08htnuX3umhjAT5GWc3m13o8jQ7rF0nlB:upaPz6sbJDCwiXNhjAT5GjQvwJ0lB

Score
10/10
mirailzrdbotnetdefense_evasiondiscoveryupx

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      3cdfe20a0f79e0d552fddb5d7a881725ac4dd8312e433a65990b55adafd2c0b3.elf

    • Size

      24KB

    • MD5

      4c239b88c1d333308ed42706769d14c6

    • SHA1

      3c6ebc5b02673e2b03447facebf724a1db297ce4

    • SHA256

      3cdfe20a0f79e0d552fddb5d7a881725ac4dd8312e433a65990b55adafd2c0b3

    • SHA512

      b0496f6441cb5ff7a12e62d30adaf5e117ad0f981d79aec8fcb0e716bdab7d6d8c4f5bebfe4fcf0b597a9f95d3c9a25e1159f2ae287429dc4991e18882a2282d

    • SSDEEP

      768:obrQlS07dEv0UXqUhvQE+CXQKMQKCXBpIpZqSWvR:4QlS07FUXqIYSXQKquwq5

    Score
    10/10
    mirailzrdbotnetdefense_evasiondiscovery

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

      botnetmirai

    • Mirai family

      mirai

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

      defense_evasion

    • Writes file to system bin folder

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks