mirai | f62e371e2dccff44fc2197eb8e52c8c2ae9e7cf54b414237946017c91b6025db | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

mpsl.elf

debian-9-mipsel

9

Sharing

General

Target

mpsl.elf
Size

122KB
Sample

250303-3msllss1ax
MD5

57505dcb62d8083c90e2fd95661b2850
SHA1

7687e5b265853249d7540fc99dfbef292c75d692
SHA256

f62e371e2dccff44fc2197eb8e52c8c2ae9e7cf54b414237946017c91b6025db
SHA512

54d81c99dbb45a70b9470bc8b9f7ca3c0b52092a91173e130265f62342f91fc4094c49bebb271ea37312d158df0f56584ad12ea79295ee29b3aa99b0b124a57c
SSDEEP

1536:rwE6/Sf4zTVP3E4Q5FKSwccdZPvHexxVENqtpOKZVT3tCzBjZknrwI4TaTB4d:+/SqN3E4Q5F6UxoKZt3tCzBj4fB4d

Score

10^/10

mirai owari defense_evasion discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

mpsl.elf

Resource

debian9-mipsel-20240226-en

defense_evasion discovery

debian-9-mipsel

6 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

OWARI

Targets

- Target
  
  mpsl.elf
- Size
  
  122KB
- MD5
  
  57505dcb62d8083c90e2fd95661b2850
- SHA1
  
  7687e5b265853249d7540fc99dfbef292c75d692
- SHA256
  
  f62e371e2dccff44fc2197eb8e52c8c2ae9e7cf54b414237946017c91b6025db
- SHA512
  
  54d81c99dbb45a70b9470bc8b9f7ca3c0b52092a91173e130265f62342f91fc4094c49bebb271ea37312d158df0f56584ad12ea79295ee29b3aa99b0b124a57c
- SSDEEP
  
  1536:rwE6/Sf4zTVP3E4Q5FKSwccdZPvHexxVENqtpOKZVT3tCzBjZknrwI4TaTB4d:+/SqN3E4Q5F6UxoKZt3tCzBj4fB4d
Score

9^/10

defense_evasion discovery
- Contacts a large (206801) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

© 2018-2025

Terms | Privacy