mirai | 6ce549e4e41c42f6aca5d6ec48a2b5c19d170c70d158fc0b2940974050869d41 | Triage

Sharing

General

Target

6ce549e4e41c42f6aca5d6ec48a2b5c19d170c70d158fc0b2940974050869d41.elf
Size

25KB
Sample

250121-dmlqmatkey
MD5

739c067ac1a2658719aa3876bb86f3ee
SHA1

733d54579245254eeee735b9addfd8984989a777
SHA256

6ce549e4e41c42f6aca5d6ec48a2b5c19d170c70d158fc0b2940974050869d41
SHA512

bb9a342a478c9b3c83d38ed053b4b9b2f27f59cdfde556b3b391ad2ef1fbdbf228d34e1d25f3fa4213dd94228a884cf7c13cf0e70fee949b15c1d66ae5de83e0
SSDEEP

768:MYYdmCv+1xlRd6lXCsqLQteLux7QQZ+rRqqdmw2:MNdme+XlRd6lysftMM7ORqqO

Score

10^/10

mirai mirai botnet defense_evasion linux upx

Malware Config

Extracted

Family

mirai

Botnet

MIRAI

Targets

- Target
  
  6ce549e4e41c42f6aca5d6ec48a2b5c19d170c70d158fc0b2940974050869d41.elf
- Size
  
  25KB
- MD5
  
  739c067ac1a2658719aa3876bb86f3ee
- SHA1
  
  733d54579245254eeee735b9addfd8984989a777
- SHA256
  
  6ce549e4e41c42f6aca5d6ec48a2b5c19d170c70d158fc0b2940974050869d41
- SHA512
  
  bb9a342a478c9b3c83d38ed053b4b9b2f27f59cdfde556b3b391ad2ef1fbdbf228d34e1d25f3fa4213dd94228a884cf7c13cf0e70fee949b15c1d66ae5de83e0
- SSDEEP
  
  768:MYYdmCv+1xlRd6lXCsqLQteLux7QQZ+rRqqdmw2:MNdme+XlRd6lysftMM7ORqqO
Score

10^/10

mirai mirai botnet defense_evasion
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Mirai family
  mirai
- Deletes itself
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

miraimiraibotnetdefense_evasion