mirai | 9ddb0b6777a2b71e2faa2c63ec596fbedc1adfa55acc9bea30d2e1b5e92caeb1 | Triage

Submit
Reports

Overview

overview

Static

static

5

ub8ehJSePA...sl.elf

debian-12-mipsel

Resubmissions

15-01-2025 15:21

250115-srs3tswpft 10

15-01-2025 14:48

250115-r6fwdaxlar 10

Sharing

General

Target

ub8ehJSePAfc9FYqZIT6.mpsl.elf
Size

22KB
Sample

250115-srs3tswpft
MD5

08234ec1fab991b0c3763a6b4f73cab0
SHA1

6f22b383ee3ca5e50f089224ce8d17f13c14caf8
SHA256

9ddb0b6777a2b71e2faa2c63ec596fbedc1adfa55acc9bea30d2e1b5e92caeb1
SHA512

f00748331b52ceda74d0961ca48bd0c57aeaa0a2e3391321fefcc68a1c9541eeca24b2a9a793648d185a44c90ce45f21b2c67250a381842390762fe19a052703
SSDEEP

384:5vOFxqEIQqIedKKZ99UGJ3UZdo2/fwlj3tWRmYi4Fr3uORYdzRWGVCz0Nv9aI:ArpXq3McUjfXfwl8kYHJuOyd9WO

Score

10^/10

mirai lzrd botnet defense_evasion discovery upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ub8ehJSePAfc9FYqZIT6.mpsl.elf

Resource

debian12-mipsel-20240221-en

mirai lzrd botnet defense_evasion discovery

debian-12-mipsel

6 signatures

300 seconds

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

- Target
  
  ub8ehJSePAfc9FYqZIT6.mpsl.elf
- Size
  
  22KB
- MD5
  
  08234ec1fab991b0c3763a6b4f73cab0
- SHA1
  
  6f22b383ee3ca5e50f089224ce8d17f13c14caf8
- SHA256
  
  9ddb0b6777a2b71e2faa2c63ec596fbedc1adfa55acc9bea30d2e1b5e92caeb1
- SHA512
  
  f00748331b52ceda74d0961ca48bd0c57aeaa0a2e3391321fefcc68a1c9541eeca24b2a9a793648d185a44c90ce45f21b2c67250a381842390762fe19a052703
- SSDEEP
  
  384:5vOFxqEIQqIedKKZ99UGJ3UZdo2/fwlj3tWRmYi4Fr3uORYdzRWGVCz0Nv9aI:ArpXq3McUjfXfwl8kYHJuOyd9WO
Score

10^/10

mirai lzrd botnet defense_evasion discovery
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Mirai family
  mirai
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
- Traces itself
  Traces itself to prevent debugging attempts
- Writes file to system bin folder
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mirailzrdbotnetdefense_evasiondiscovery

© 2018-2025

Terms | Privacy