General
-
Target
a9cfa78fcb204c246319dd3d3a47ce2fa17137a7924756c8b4688d227443d34b.elf
-
Size
75KB
-
Sample
250114-dht67sxlen
-
MD5
d0e41bbbdd2dfc55e138d300228887b7
-
SHA1
157b9f9b631fe4d7628801bbfb88828524f55d54
-
SHA256
a9cfa78fcb204c246319dd3d3a47ce2fa17137a7924756c8b4688d227443d34b
-
SHA512
67cc3688f0adea4fb898567d29c3d5cb162ca33f322d577d8fa6c267b273a2441930ab279916fcdc4aa9baa9dca87f2cf32fc95fd2694ccca72b72ae83058ec5
-
SSDEEP
1536:dvBGpSzKkubpUa2jecqSR/JYHqrJw+e6+MFOPRkTZRbXPLz8wbZnx+5:hcpHblUaBczNeHqNw36FOPOZRTPLQwb/
Malware Config
Extracted
mirai
MIRAI
asdfui.elite-api.su
Targets
-
-
Target
a9cfa78fcb204c246319dd3d3a47ce2fa17137a7924756c8b4688d227443d34b.elf
-
Size
75KB
-
MD5
d0e41bbbdd2dfc55e138d300228887b7
-
SHA1
157b9f9b631fe4d7628801bbfb88828524f55d54
-
SHA256
a9cfa78fcb204c246319dd3d3a47ce2fa17137a7924756c8b4688d227443d34b
-
SHA512
67cc3688f0adea4fb898567d29c3d5cb162ca33f322d577d8fa6c267b273a2441930ab279916fcdc4aa9baa9dca87f2cf32fc95fd2694ccca72b72ae83058ec5
-
SSDEEP
1536:dvBGpSzKkubpUa2jecqSR/JYHqrJw+e6+MFOPRkTZRbXPLz8wbZnx+5:hcpHblUaBczNeHqNw36FOPOZRTPLQwb/
Score9/10-
Contacts a large (23991) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
File and Directory Permissions Modification
Adversaries may modify file or directory permissions to evade defenses.
-
Modifies rc script
Adding/modifying system rc scripts is a common persistence mechanism.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Boot or Logon Initialization Scripts
1RC Scripts
1Privilege Escalation
Boot or Logon Autostart Execution
1Boot or Logon Initialization Scripts
1RC Scripts
1