mirai | a019845c30f3122f23e76d7dc3f98de6e7d61c47fc5e4a494e1354ade63eafaf | Triage

Submit
Reports

Overview

overview

Static

static

5

37.114.41....58.elf

debian-9-armhf

Sharing

General

Target

37.114.41.228-boatnet.arm-2025-01-22T024958.elf
Size

21KB
Sample

250122-dnfwrsvnez
MD5

5c3bbfb420acd9bd904f458fa9cb78b6
SHA1

764465629929362c66bba209a2585d312f523b34
SHA256

a019845c30f3122f23e76d7dc3f98de6e7d61c47fc5e4a494e1354ade63eafaf
SHA512

8e47dfd8f4cb980bad6094a2afcbc74e0bfa5a2bc8223ec8e1388a1df8ed4bc0165773f91e58c20446cc5720f0a3d568ae91ac4bdc5a697177257cdf4aafce73
SSDEEP

384:cKNu+Vl2txfVHJBKPgd5AqzFpEhNCS5RVy+CY2/gQ6ipMNmqhymdGUop5hx:ciVnmtpIyLzAhIyRVFY/gtimmqs3Uozz

Score

10^/10

mirai lzrd botnet defense_evasion discovery upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

37.114.41.228-boatnet.arm-2025-01-22T024958.elf

Resource

debian9-armhf-20240611-en

mirai lzrd botnet defense_evasion discovery

debian-9-armhf

6 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

- Target
  
  37.114.41.228-boatnet.arm-2025-01-22T024958.elf
- Size
  
  21KB
- MD5
  
  5c3bbfb420acd9bd904f458fa9cb78b6
- SHA1
  
  764465629929362c66bba209a2585d312f523b34
- SHA256
  
  a019845c30f3122f23e76d7dc3f98de6e7d61c47fc5e4a494e1354ade63eafaf
- SHA512
  
  8e47dfd8f4cb980bad6094a2afcbc74e0bfa5a2bc8223ec8e1388a1df8ed4bc0165773f91e58c20446cc5720f0a3d568ae91ac4bdc5a697177257cdf4aafce73
- SSDEEP
  
  384:cKNu+Vl2txfVHJBKPgd5AqzFpEhNCS5RVy+CY2/gQ6ipMNmqhymdGUop5hx:ciVnmtpIyLzAhIyRVFY/gtimmqs3Uozz
Score

10^/10

mirai lzrd botnet defense_evasion discovery
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Mirai family
  mirai
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
- Enumerates running processes
  Discovers information about currently running processes on the system
- Writes file to system bin folder
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mirailzrdbotnetdefense_evasiondiscovery

© 2018-2025

Terms | Privacy