General

  • Target

    f4ce9770558764339cce8d8f8d334c2a36849a9d7b773b5aa8583cdfdf9fdf3f.elf

  • Size

    21KB

  • Sample

    250130-ee82maxjgk

  • MD5

    2be0ffbd739e3310964dfd237b27a5cb

  • SHA1

    a9fc0a34c6d673215c92b2d784b222a34a365cfe

  • SHA256

    f4ce9770558764339cce8d8f8d334c2a36849a9d7b773b5aa8583cdfdf9fdf3f

  • SHA512

    f7aaf9c3dbe047b7fbfd5bcb90d8c38184da7798d0f8b0f9b1fb97c28e606cdada5a7d7da906748c32af4a61fdd5291111ac4d5ff677bd01618b59bad421cb3c

  • SSDEEP

    384:MGbrJRQKbj8s/qPGajVhXLGj9OP6uX3mK7tSAv/Ojgv2h/j8e80Rceq5+7Sybh:Dhn8oDoVlGjcCO3VRHmjhxBq+Bbh

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      f4ce9770558764339cce8d8f8d334c2a36849a9d7b773b5aa8583cdfdf9fdf3f.elf

    • Size

      21KB

    • MD5

      2be0ffbd739e3310964dfd237b27a5cb

    • SHA1

      a9fc0a34c6d673215c92b2d784b222a34a365cfe

    • SHA256

      f4ce9770558764339cce8d8f8d334c2a36849a9d7b773b5aa8583cdfdf9fdf3f

    • SHA512

      f7aaf9c3dbe047b7fbfd5bcb90d8c38184da7798d0f8b0f9b1fb97c28e606cdada5a7d7da906748c32af4a61fdd5291111ac4d5ff677bd01618b59bad421cb3c

    • SSDEEP

      384:MGbrJRQKbj8s/qPGajVhXLGj9OP6uX3mK7tSAv/Ojgv2h/j8e80Rceq5+7Sybh:Dhn8oDoVlGjcCO3VRHmjhxBq+Bbh

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

    • Mirai family

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Writes file to system bin folder

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.