Overview

overview

10

Static

static

5

nvm.mips.elf

debian-9-mips

10

Analysis

  • max time kernel
    151s
  • max time network
    155s
  • platform
    debian-9_mips
  • resource
    debian9-mipsbe-20240611-en
  • resource tags

    arch:mipsimage:debian9-mipsbe-20240611-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
  • submitted
    02-02-2025 17:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    nvm.mips.elf

  • Size

    34KB

  • MD5

    e030f1e0563b151a85df5b66b76ad90f

  • SHA1

    8012a60ca15838c961eb9c93b41c4b1418542332

  • SHA256

    b08c6a7379758a5fe30880f08e143983f62fdca0b51d58d1469952c80ea6872d

  • SHA512

    8090d98c1031d3bdcff6a03b2d3aa65d1cdfe3f4e51c356fdf2330ec5c6d267090bb6fed351accf0796cd01e10886906ccc8b6929fbea85b06bd7593e793b0ea

  • SSDEEP

    768:VqLNyXuZs0tNQ+Sf1BB3XhcPjP4xCkYh6cGVD/EALAJgGlzDp+kO+Kcl:4LNnvnxM1BdXhtCkYhrVkWKcl

Score
10/10
miraibotnetdefense_evasiondiscovery

Malware Config

Signatures

  • Mirai

    Mirai is a prevalent Linux malware infecting exposed network devices.

    botnetmirai
  • Mirai family
    mirai
  • Modifies Watchdog functionality 1 TTPs 2 IoCs

    Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    defense_evasion
  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

    discovery
  • System Network Configuration Discovery 1 TTPs 1 IoCs

    Adversaries may gather information about the network configuration of a system.

    discovery

Processes

  • /tmp/nvm.mips.elf
    /tmp/nvm.mips.elf
    1⤵
    • Modifies Watchdog functionality
    • Reads runtime system information
    • System Network Configuration Discovery
    PID:699

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads