Overview

overview

10

Static

static

5

boatnet.arm7.elf

debian-12-armhf

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    boatnet.arm7.elf

  • Size

    45KB

  • Sample

    250207-3z5fyavjcs

  • MD5

    b4bface069a6199d0803c7510332d5d6

  • SHA1

    17767b79f02ae1e85af6da12dab5a91685afe6f9

  • SHA256

    9c43d37d7503507f35de4ccea49b669faab19ea816d99f7a2370b2607ea3efcf

  • SHA512

    76ee463dac0335161633c24a9076907ba214081b15fb9286d2f605e0b10f3723fb33c0e830b79300dde6a0b0465880c9d417077e0d64bf5a39f9335a28f2cbd2

  • SSDEEP

    768:D/TYCoIxdEk+AxoTZAZHFeq8b3J9q3UELbUXfi6nVMQHI4vcGpvZ:DECFd+A6YHAx8LRQZZ

Score
10/10
mirailzrdbotnetdefense_evasiondiscoveryupx

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      boatnet.arm7.elf

    • Size

      45KB

    • MD5

      b4bface069a6199d0803c7510332d5d6

    • SHA1

      17767b79f02ae1e85af6da12dab5a91685afe6f9

    • SHA256

      9c43d37d7503507f35de4ccea49b669faab19ea816d99f7a2370b2607ea3efcf

    • SHA512

      76ee463dac0335161633c24a9076907ba214081b15fb9286d2f605e0b10f3723fb33c0e830b79300dde6a0b0465880c9d417077e0d64bf5a39f9335a28f2cbd2

    • SSDEEP

      768:D/TYCoIxdEk+AxoTZAZHFeq8b3J9q3UELbUXfi6nVMQHI4vcGpvZ:DECFd+A6YHAx8LRQZZ

    Score
    10/10
    mirailzrdbotnetdefense_evasiondiscovery

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

      botnetmirai

    • Mirai family

      mirai

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

      defense_evasion

    • Writes file to system bin folder

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks