Overview

overview

10

Static

static

5

b09b192ebd...86.elf

debian-12-armhf

10

Analysis

  • max time kernel
    1s
  • max time network
    148s
  • platform
    debian-12_armhf
  • resource
    debian12-armhf-20240221-en
  • resource tags

    arch:armhfimage:debian12-armhf-20240221-enkernel:6.1.0-17-armmp-lpaelocale:en-usos:debian-12-armhfsystem
  • submitted
    16-01-2025 03:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b09b192ebd79866f1df38832089c03205a2485d75b58431a96a70fcd09423486.elf

  • Size

    33KB

  • MD5

    cc3ee859be34d2801c78bab484282727

  • SHA1

    2c31c2646fe3756cebc4a66903ef13d99acb759a

  • SHA256

    b09b192ebd79866f1df38832089c03205a2485d75b58431a96a70fcd09423486

  • SHA512

    d9137ca4abdf1c0abe864aeb36a44160d1dc7dae59cc46d21fe3db187eac0506860de2985775ba5f8126a3ed775f8f21043d074847c2972beb43b336672aa671

  • SSDEEP

    768:e96r/HH0Ql+GqOmG5PMGDPZ1M/VwWqu7gcq70HY7Wh9q3UELC9:w4PH0Ql3qOmaJTMNzkJ77WULm

Score
10/10
mirailzrdbotnetdiscovery

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Signatures

  • Mirai

    Mirai is a prevalent Linux malware infecting exposed network devices.

    botnetmirai
  • Mirai family
    mirai
  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

    discovery

Processes

  • /tmp/b09b192ebd79866f1df38832089c03205a2485d75b58431a96a70fcd09423486.elf
    /tmp/b09b192ebd79866f1df38832089c03205a2485d75b58431a96a70fcd09423486.elf
    1⤵
    • Reads runtime system information
    PID:712

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads