mirai | 0a2c9150391cf228a7ce859473d8adce0fd4b2e10c71f6cf76e53abbff66aab3 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

EdiAf.mpsl.elf

debian-12-mipsel

7

Sharing

General

Target

EdiAf.mpsl.elf
Size

98KB
Sample

250203-men1fszpdj
MD5

15a5a8e9274911d77a2f712c844e9ce4
SHA1

5a99c4100991a874b25a98c7e73a46689f5378f2
SHA256

0a2c9150391cf228a7ce859473d8adce0fd4b2e10c71f6cf76e53abbff66aab3
SHA512

987e68ae81f29bd8338782c77c4fae9d47bd89764279061771272bb3f386ff24b9a1e03f9643b06922f731a4371522ab62d04f5212eeb5569aa2801f5fc49147
SSDEEP

1536:byxgEvcKwxXHQu9+c8qXKG3+7Tjq35dRhJpNemTZNh+uSZW4J/:byxgEvcKwxxXKGDdRhJOmTIY4J

Score

10^/10

mirai unstable defense_evasion discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

EdiAf.mpsl.elf

Resource

debian12-mipsel-20240729-en

defense_evasion discovery

debian-12-mipsel

5 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

UNSTABLE

Targets

- Target
  
  EdiAf.mpsl.elf
- Size
  
  98KB
- MD5
  
  15a5a8e9274911d77a2f712c844e9ce4
- SHA1
  
  5a99c4100991a874b25a98c7e73a46689f5378f2
- SHA256
  
  0a2c9150391cf228a7ce859473d8adce0fd4b2e10c71f6cf76e53abbff66aab3
- SHA512
  
  987e68ae81f29bd8338782c77c4fae9d47bd89764279061771272bb3f386ff24b9a1e03f9643b06922f731a4371522ab62d04f5212eeb5569aa2801f5fc49147
- SSDEEP
  
  1536:byxgEvcKwxXHQu9+c8qXKG3+7Tjq35dRhJpNemTZNh+uSZW4J/:byxgEvcKwxxXKGDdRhJOmTIY4J
Score

7^/10

defense_evasion discovery
- Deletes itself
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
- Writes file to system bin folder
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

© 2018-2025

Terms | Privacy