Overview

overview

10

Static

static

5

f96542e015...73.elf

debian-12-armhf

10

Resubmissions

12-01-2025 03:47

250112-ecm2daxlhl 10

12-01-2025 03:35

250112-d5gvdsvkcz 10

Analysis

  • max time kernel
    0s
  • max time network
    908s
  • platform
    debian-12_armhf
  • resource
    debian12-armhf-20240221-en
  • resource tags

    arch:armhfimage:debian12-armhf-20240221-enkernel:6.1.0-17-armmp-lpaelocale:en-usos:debian-12-armhfsystem
  • submitted
    12-01-2025 03:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f96542e015d336b20eecf5ce8b7add831791eaea5994ef1d91ba5c230ed2aa73.elf

  • Size

    19KB

  • MD5

    541dc01d8d4e4951a80d47918f598ce2

  • SHA1

    51921cec5c7f2c856382df8b627b61067f87eb5f

  • SHA256

    f96542e015d336b20eecf5ce8b7add831791eaea5994ef1d91ba5c230ed2aa73

  • SHA512

    f588e94f9d6854da2875796ef41a0439c3431e8590e714cc2729abb9882b612e7c4ad668708fc9d1e09cded8eb112e9c21ef400d6bdb305f492163b016eea2f7

  • SSDEEP

    384:N3me3Vg19bm2MxowbW6kn0HG0sdXIC62vnL6Myx4E6qh7qmdGUEpiaMyi:t3Vg19bm2Wo9aHG0uFL4qq9q3UEL/i

Score
10/10
mirailzrdbotnet

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Signatures

  • Mirai

    Mirai is a prevalent Linux malware infecting exposed network devices.

    botnetmirai
  • Mirai family
    mirai

Processes

  • /tmp/f96542e015d336b20eecf5ce8b7add831791eaea5994ef1d91ba5c230ed2aa73.elf
    /tmp/f96542e015d336b20eecf5ce8b7add831791eaea5994ef1d91ba5c230ed2aa73.elf cmd /c "%TERMINATE%" "\"DELETE\""
    1⤵
      PID:710

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads