Overview

overview

10

Static

static

5

boatnet.x86.elf

ubuntu-22.04-amd64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    boatnet.x86.elf

  • Size

    28KB

  • Sample

    250130-vptyfszkaq

  • MD5

    b0d3229f1698a805854772b92d0b3f3e

  • SHA1

    aaa6354f53cbc3a7a79766f404c0f1f0713bad1b

  • SHA256

    9181ed6ba0e60d238ca26e6fe6f012962b75dba73f671dc0ac16586532b0a452

  • SHA512

    de5ae7e323c76c640eda56dd69811802e49d843fc889aeaa0ccf3b1d1ea10605ece81b7255189d6bdcd506e1ad3aa2ecf34b467c54576a56670b42b3c2ef1615

  • SSDEEP

    768:77cy4FzrJClwhYcPVdK2KkdKWWGza3anhv2DN1:PV+JCmh7/hvGMaqnhv2Db

Score
10/10
mirailzrdbotnetdefense_evasiondiscoverylinuxupx

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      boatnet.x86.elf

    • Size

      28KB

    • MD5

      b0d3229f1698a805854772b92d0b3f3e

    • SHA1

      aaa6354f53cbc3a7a79766f404c0f1f0713bad1b

    • SHA256

      9181ed6ba0e60d238ca26e6fe6f012962b75dba73f671dc0ac16586532b0a452

    • SHA512

      de5ae7e323c76c640eda56dd69811802e49d843fc889aeaa0ccf3b1d1ea10605ece81b7255189d6bdcd506e1ad3aa2ecf34b467c54576a56670b42b3c2ef1615

    • SSDEEP

      768:77cy4FzrJClwhYcPVdK2KkdKWWGza3anhv2DN1:PV+JCmh7/hvGMaqnhv2Db

    Score
    10/10
    mirailzrdbotnetdefense_evasiondiscovery

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

      botnetmirai

    • Mirai family

      mirai

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

      defense_evasion

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Writes file to system bin folder

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks