echobot | ebbdbe311139e0fea6fce89a324fa048e470162e5741a9d239e2957d570a735d | Triage

Submit
Reports

Overview

overview

Static

static

mips.elf

debian-9-mips

7

Sharing

General

Target

mips.elf
Size

95KB
Sample

250219-xcgtgawrak
MD5

339fe26cbbd0e154b6c96fe1932163e0
SHA1

453b2ad5878b5c6ccfe98bd3b95a8a31bf213d3c
SHA256

ebbdbe311139e0fea6fce89a324fa048e470162e5741a9d239e2957d570a735d
SHA512

e0b6973c7b5f5ab7e2cc932e27b3fccb3a99fdf608f76e1da030e6b4a57687cfe27990bf17351ae1778bc91418d50c0cd8496d0c20f30caeb087ee400226870c
SSDEEP

1536:U9aImucT6Wv4ZgarBYBo8ynC0xyIGuui0fhJ4lzHWyZ2fGVxfzN:zuWbv+zY7ynxyI7ujJ4lzHWyZ2+XzN

Score

10^/10

echobot mirai defense_evasion discovery

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

mips.elf

Resource

debian9-mipsbe-20240729-en

defense_evasion discovery

debian-9-mips

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  mips.elf
- Size
  
  95KB
- MD5
  
  339fe26cbbd0e154b6c96fe1932163e0
- SHA1
  
  453b2ad5878b5c6ccfe98bd3b95a8a31bf213d3c
- SHA256
  
  ebbdbe311139e0fea6fce89a324fa048e470162e5741a9d239e2957d570a735d
- SHA512
  
  e0b6973c7b5f5ab7e2cc932e27b3fccb3a99fdf608f76e1da030e6b4a57687cfe27990bf17351ae1778bc91418d50c0cd8496d0c20f30caeb087ee400226870c
- SSDEEP
  
  1536:U9aImucT6Wv4ZgarBYBo8ynC0xyIGuui0fhJ4lzHWyZ2fGVxfzN:zuWbv+zY7ynxyI7ujJ4lzHWyZ2+XzN
Score

7^/10

defense_evasion discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

© 2018-2025

Terms | Privacy