Overview

overview

10

Static

static

5

63e07fb3c7...b2.elf

debian-12-mipsel

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1d9dc98703e076d1399e4fcbe53b7174.bin

  • Size

    23KB

  • Sample

    250111-bc2yrayldk

  • MD5

    dd3431cc6651d263a180b540a27c3432

  • SHA1

    f58db71337b43b06ed1119c6469936f692ec7085

  • SHA256

    ec0aab5fa81df55711977a3b0049e19583970c1dbe546229dd71c7dd7dc9ba89

  • SHA512

    0b44474f391a680ce1fe7a9b7f021d505fcf99f747cd0cf1fc0bce821ecb631968699c4db44147f6a86a64d6f181f617ed8759399b33ffd12afbb025a4acca39

  • SSDEEP

    384:akRe5r6wS/k7lqE2q5zdnoi6ReXc+/7mcPZ87RRWWbX0i/CRrZN6:nwcLTTqN+ReXc+/KcBWREiKk

Score
10/10
mirailzrdbotnetdefense_evasiondiscoveryupx

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      63e07fb3c7f08140901b1b8485fac33ce510f93547e4677fa8890596245e25b2.elf

    • Size

      24KB

    • MD5

      1d9dc98703e076d1399e4fcbe53b7174

    • SHA1

      69621db0aaaf185700170311f70972a633ccd591

    • SHA256

      63e07fb3c7f08140901b1b8485fac33ce510f93547e4677fa8890596245e25b2

    • SHA512

      62faa5691fc29bf92411558aae5fd001142ad03fa49156418630103a108eba293760bab5c84f11db810942d5fa31a965d301e3eb8a942eb268ea19bfeb0185ed

    • SSDEEP

      768:obrQlS07dEv0UXqUhvQE+CXQKMQKCXBpPiZqSWvE:4QlS07FUXqIYSXQKqueqc

    Score
    10/10
    mirailzrdbotnetdefense_evasiondiscovery

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

      botnetmirai

    • Mirai family

      mirai

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

      defense_evasion

    • Writes file to system bin folder

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks