General
-
Target
e86c5559de4555ca3b0edb272766eaaf6fc84ced06174832787c0bc3cc386b05.sh
-
Size
2KB
-
Sample
250130-d82nzaxqdv
-
MD5
2804cbc613cf37545bbd4db9c2c1f8d4
-
SHA1
ee8c86685fb7f2686a1a01237bbb29732fc08b4e
-
SHA256
e86c5559de4555ca3b0edb272766eaaf6fc84ced06174832787c0bc3cc386b05
-
SHA512
0751745e1a2919666399957cbd7700d1308fe7e2926d327ed68eb83ce3b467435e9d4142e05bb9ed446b8b14b2bb0ad7df8385f32262d6ebf44315a22a169730
Malware Config
Extracted
mirai
LZRD
Extracted
mirai
LZRD
Extracted
mirai
LZRD
Extracted
mirai
LZRD
Extracted
mirai
LZRD
Targets
-
-
Target
e86c5559de4555ca3b0edb272766eaaf6fc84ced06174832787c0bc3cc386b05.sh
-
Size
2KB
-
MD5
2804cbc613cf37545bbd4db9c2c1f8d4
-
SHA1
ee8c86685fb7f2686a1a01237bbb29732fc08b4e
-
SHA256
e86c5559de4555ca3b0edb272766eaaf6fc84ced06174832787c0bc3cc386b05
-
SHA512
0751745e1a2919666399957cbd7700d1308fe7e2926d327ed68eb83ce3b467435e9d4142e05bb9ed446b8b14b2bb0ad7df8385f32262d6ebf44315a22a169730
Score10/10-
Mirai
Mirai is a prevalent Linux malware infecting exposed network devices.
-
Mirai family
-
File and Directory Permissions Modification
Adversaries may modify file or directory permissions to evade defenses.
-
Executes dropped EXE
-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
Enumerates running processes
Discovers information about currently running processes on the system
-
Writes file to system bin folder
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
File and Directory Permissions Modification
1Linux and Mac File and Directory Permissions Modification
1Impair Defenses
1Virtualization/Sandbox Evasion
1System Checks
1