Overview

overview

10

Static

static

5

5.175.249....32.elf

debian-12-armhf

10

Analysis

  • max time kernel
    0s
  • max time network
    159s
  • platform
    debian-12_armhf
  • resource
    debian12-armhf-20240221-en
  • resource tags

    arch:armhfimage:debian12-armhf-20240221-enkernel:6.1.0-17-armmp-lpaelocale:en-usos:debian-12-armhfsystem
  • submitted
    07-02-2025 20:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5.175.249.223-boatnet.arm5-2025-02-07T185132.elf

  • Size

    17KB

  • MD5

    384c4646cb6299e1a0fb9757f40a8d50

  • SHA1

    8645a6bf655a62953bd412f5ad430cd06967916c

  • SHA256

    329b342af109b60e5a87054ecdcd783cd04e09d66c68d898ec119826f86ec4dc

  • SHA512

    06a56a0e654edf23a350994ca65b428e04ca5e45952b8d37502181f41dcfb40f4bc004f0e1745f77cc9ec3370bab550686129dfba52ce9ea84f1eef9e9cf262d

  • SSDEEP

    384:2hKsm9ovaLX7ZA0xNj9HYURlJTO6moXTcStfNh7qmdGUEpiaNv:2o9ov2xJFRy6m2THfN9q3UELR

Score
10/10
mirailzrdbotnet

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Signatures

  • Mirai

    Mirai is a prevalent Linux malware infecting exposed network devices.

    botnetmirai
  • Mirai family
    mirai

Processes

  • /tmp/5.175.249.223-boatnet.arm5-2025-02-07T185132.elf
    /tmp/5.175.249.223-boatnet.arm5-2025-02-07T185132.elf
    1⤵
      PID:711

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads