Overview

overview

10

Static

static

5

boatnet.arm7.elf

debian-12-armhf

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    boatnet.arm7.elf

  • Size

    45KB

  • Sample

    250214-3msava1pbs

  • MD5

    30e2a5faa9f0a3a176891682261e89f5

  • SHA1

    812a5bb53986ccb21adbc582c4abf6413a1959fa

  • SHA256

    1535853ed1b235db59792193b14a27b2b939ec5d571296441ff6ef435e10ecb1

  • SHA512

    5b67ae27d5add96b2fabc3a2e5ea45abe9c05de7675e0cd5d5cfc6ecd234f9e7eda2e8dbcf621f9ab7a6fc6b0ec9cb56921432a91ee7b2c0cc300af8e85e324b

  • SSDEEP

    768:g/TYCoIxdEk+AxoTZAZHFeq8b3kooR9q3UELbUXfi6nVMQHI4vcGpv8:gECFd+A6YHAxkonLRQZ8

Score
10/10
mirailzrdbotnetdefense_evasiondiscoveryupx

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      boatnet.arm7.elf

    • Size

      45KB

    • MD5

      30e2a5faa9f0a3a176891682261e89f5

    • SHA1

      812a5bb53986ccb21adbc582c4abf6413a1959fa

    • SHA256

      1535853ed1b235db59792193b14a27b2b939ec5d571296441ff6ef435e10ecb1

    • SHA512

      5b67ae27d5add96b2fabc3a2e5ea45abe9c05de7675e0cd5d5cfc6ecd234f9e7eda2e8dbcf621f9ab7a6fc6b0ec9cb56921432a91ee7b2c0cc300af8e85e324b

    • SSDEEP

      768:g/TYCoIxdEk+AxoTZAZHFeq8b3kooR9q3UELbUXfi6nVMQHI4vcGpv8:gECFd+A6YHAxkonLRQZ8

    Score
    10/10
    mirailzrdbotnetdefense_evasiondiscovery

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

      botnetmirai

    • Mirai family

      mirai

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

      defense_evasion

    • Writes file to system bin folder

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks