Extracted

• • Target

    boatnet.arm.elf

  • Size

    28KB

  • MD5

    1579d266821433662121460d8cdc3997

  • SHA1

    125f690d434227eb7a362c8c1bf1a02c33aaeb21

  • SHA256

    f198620770d52a93cd9ac211cf08fa09d9c937d6ebdb7743f804ba1f1289b2b0

  • SHA512

    c0f419d26d10625d137b11c712f8efd290437b3e65bbf3847f743ca8314b11768ceb625c38b17e441a4df7a56dfe0dcaca7e50b0888dd694500ba53caed96ade

  • SSDEEP

    768:PWWGINCr3uXN2oXxOIhBMKC02ZOXZPcj8SkHs3UozC:PVTCKd2BIhgkpkgl6zC

  Score

  10^/10

  mirailzrdbotnetdefense_evasiondiscovery

  • Mirai

    Mirai is a prevalent Linux malware infecting exposed network devices.

    botnetmirai

  • Mirai family

    mirai

  • Modifies Watchdog functionality

    Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    defense_evasion

  • Enumerates running processes

    Discovers information about currently running processes on the system

  • Writes file to system bin folder

  behavioral1