mirai | 9724ec0ed2f79f63d1e62dbf2da4a1ffe5b81d8446230f33795427bba5a57e3a | Triage

Submit
Reports

Overview

overview

Static

static

1

GODLYBINSN...268.sh

ubuntu-18.04-amd64

GODLYBINSN...268.sh

debian-9-armhf

GODLYBINSN...268.sh

debian-9-mips

GODLYBINSN...268.sh

debian-9-mipsel

Sharing

General

Target

GODLYBINSNIGGAYOUCANTCRACKTHESEBITCH11111222268.sh
Size

4KB
Sample

250118-eqx4hasrep
MD5

c458138484ec7b830d632fd383d3d321
SHA1

0e7c076b71401207c7568f50f897110ea98f9d73
SHA256

9724ec0ed2f79f63d1e62dbf2da4a1ffe5b81d8446230f33795427bba5a57e3a
SHA512

e0a9fb2dcae645581a9f57372d93c30b6b4c906fc888582e91c4ef0de4b6dce961bcca0440f56164ad5354de41e91aab0fcb38dbee4fd0b7db2249fe75cd01fd
SSDEEP

48:vXkTv3X9CTXiFLXF6vX/4vXL02th3Xri5lXodNL3X7E2aLX877JX9CTXJ+LX2ZTS:v6aiqGtDis3kL2K+WriR

Score

10^/10

mirai lzrd antivm botnet defense_evasion discovery linux upx

Static task

static1

Behavioral task

behavioral1

Sample

GODLYBINSNIGGAYOUCANTCRACKTHESEBITCH11111222268.sh

Resource

ubuntu1804-amd64-20240508-en

mirai lzrd botnet defense_evasion discovery upx

ubuntu-18.04-amd64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

GODLYBINSNIGGAYOUCANTCRACKTHESEBITCH11111222268.sh

Resource

debian9-armhf-20240729-en

mirai lzrd antivm botnet defense_evasion discovery upx

debian-9-armhf

11 signatures

150 seconds

Behavioral task

behavioral3

Sample

GODLYBINSNIGGAYOUCANTCRACKTHESEBITCH11111222268.sh

Resource

debian9-mipsbe-20240611-en

mirai lzrd botnet defense_evasion discovery upx

debian-9-mips

11 signatures

150 seconds

Behavioral task

behavioral4

Sample

GODLYBINSNIGGAYOUCANTCRACKTHESEBITCH11111222268.sh

Resource

debian9-mipsel-20240611-en

mirai lzrd botnet defense_evasion discovery upx

debian-9-mipsel

10 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Extracted

Family

mirai

Botnet

LZRD

Extracted

Family

mirai

Botnet

LZRD

Extracted

Family

mirai

Botnet

LZRD

Extracted

Family

mirai

Botnet

LZRD

Extracted

Family

mirai

Botnet

LZRD

Extracted

Family

mirai

Botnet

LZRD

Targets

- Target
  
  GODLYBINSNIGGAYOUCANTCRACKTHESEBITCH11111222268.sh
- Size
  
  4KB
- MD5
  
  c458138484ec7b830d632fd383d3d321
- SHA1
  
  0e7c076b71401207c7568f50f897110ea98f9d73
- SHA256
  
  9724ec0ed2f79f63d1e62dbf2da4a1ffe5b81d8446230f33795427bba5a57e3a
- SHA512
  
  e0a9fb2dcae645581a9f57372d93c30b6b4c906fc888582e91c4ef0de4b6dce961bcca0440f56164ad5354de41e91aab0fcb38dbee4fd0b7db2249fe75cd01fd
- SSDEEP
  
  48:vXkTv3X9CTXiFLXF6vX/4vXL02th3Xri5lXodNL3X7E2aLX877JX9CTXJ+LX2ZTS:v6aiqGtDis3kL2K+WriR
Score

10^/10

mirai lzrd botnet defense_evasion discovery upx antivm
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Mirai family
  mirai
- File and Directory Permissions Modification
  Adversaries may modify file or directory permissions to evade defenses.
  defense_evasion
- Executes dropped EXE
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
- Enumerates running processes
  Discovers information about currently running processes on the system
- Writes file to system bin folder
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2 behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

Linux and Mac File and Directory Permissions Modification

Impair Defenses

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Network Configuration Discovery

Virtualization/Sandbox Evasion

System Checks

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mirailzrdbotnetdefense_evasiondiscoveryupx

behavioral2

mirailzrdantivmbotnetdefense_evasiondiscoveryupx

behavioral3

mirailzrdbotnetdefense_evasiondiscoveryupx

behavioral4

mirailzrdbotnetdefense_evasiondiscoveryupx

© 2018-2025

Terms | Privacy