Overview

overview

10

Static

static

5

3d00bf75ea...9e.elf

debian-12-mipsel

10

Analysis

  • max time kernel
    151s
  • max time network
    155s
  • platform
    debian-12_mipsel
  • resource
    debian12-mipsel-20240221-en
  • resource tags

    arch:mipselimage:debian12-mipsel-20240221-enkernel:6.1.0-17-4kc-maltalocale:en-usos:debian-12-mipselsystem
  • submitted
    03-02-2025 03:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3d00bf75eae0f2912fd8dc87cc113e85af5a69a8f00bc07ba33c69fb45ad7b9e.elf

  • Size

    35KB

  • MD5

    96b14ef9b30bd2c8aa5e377adecebebf

  • SHA1

    4e16063bc3bb0292a3b91122287a3e15e29ef00f

  • SHA256

    3d00bf75eae0f2912fd8dc87cc113e85af5a69a8f00bc07ba33c69fb45ad7b9e

  • SHA512

    0a3ebb078d6a5ac6a79a79e48bb9eacce1244fc76166e55d0e2058dc4b2e0cb40259b35e6e6493b04c702856d18f7b7b37668f87d93f8be7dbf4506d16644aa8

  • SSDEEP

    768:6xZ7C/sWBN/ZxdGLHXrQL9HZ98It9e5s3VRIVbKWGPO4:t10LY/B9e5p6PT

Score
10/10
miraibotnetdefense_evasiondiscovery

Malware Config

Signatures

  • Mirai

    Mirai is a prevalent Linux malware infecting exposed network devices.

    botnetmirai
  • Mirai family
    mirai
  • Modifies Watchdog functionality 1 TTPs 2 IoCs

    Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    defense_evasion
  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

    discovery

Processes

  • /tmp/3d00bf75eae0f2912fd8dc87cc113e85af5a69a8f00bc07ba33c69fb45ad7b9e.elf
    /tmp/3d00bf75eae0f2912fd8dc87cc113e85af5a69a8f00bc07ba33c69fb45ad7b9e.elf
    1⤵
    • Modifies Watchdog functionality
    • Reads runtime system information
    PID:744

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads