mirai | 9dd8eb0da365781bd5baa75032c8a6021c1c90e96d105dd25a227518b55eabda

Analysis

max time kernel
0s
platform
debian-9_armhf
resource
debian9-armhf-20240418-en
resource tags

arch:armhfimage:debian9-armhf-20240418-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
submitted
16-01-2025 03:21

Target

9dd8eb0da365781bd5baa75032c8a6021c1c90e96d105dd25a227518b55eabda.elf
Size

26KB
MD5

be08b8ec003705f708a94d58a300b26f
SHA1

7eb1c60ae3a244e7aec537af85444cc430778e5d
SHA256

9dd8eb0da365781bd5baa75032c8a6021c1c90e96d105dd25a227518b55eabda
SHA512

e9eaff7a770db733b8c0ee848151be6bee74938002f310e28773f7775dd5c3df8b9a58038f599bb85763a6bd8af238155becf0f80af3622f07abe513ab2c8d2d
SSDEEP

768:DMKyhegCCMqfizjoNpd2vJdX6vwrf9q3UELum:oKy4qfqoeJdXWgOLn

Score

10^/10

Family

mirai

Botnet

LZRD

Mirai
Mirai is a prevalent Linux malware infecting exposed network devices.
botnet mirai
Mirai family
mirai

Reads runtime system information 1 IoCs

Reads data from /proc virtual filesystem.

description	ioc	Process
File opened for reading	/proc/self/exe	9dd8eb0da365781bd5baa75032c8a6021c1c90e96d105dd25a227518b55eabda.elf

/tmp/9dd8eb0da365781bd5baa75032c8a6021c1c90e96d105dd25a227518b55eabda.elf
/tmp/9dd8eb0da365781bd5baa75032c8a6021c1c90e96d105dd25a227518b55eabda.elf
1⤵
- Reads runtime system information
PID:645