mirai | fc2d055d228fdabf8fda77c8f9959571d564576cbd7e69f4b4743b3a07995a8b | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

arm.elf

debian-9-armhf

9

Sharing

General

Target

arm.elf
Size

98KB
Sample

250303-3ql81as1gw
MD5

6d07db847488c4aa24c3c993a0e9ce12
SHA1

6657d07724bf50071ef779f374a1804af76ff6ea
SHA256

fc2d055d228fdabf8fda77c8f9959571d564576cbd7e69f4b4743b3a07995a8b
SHA512

2ebfe0471ce343ef653ec6432928fd662be3883c3bd341bcde77c3b7f6b70dbfef9f719377e27589f31598945bfa542e67839927ae463c5d32e8bad829269580
SSDEEP

1536:javbmEwNvEKo03L0+2HiNk9mKQ7R04hb3HcpKeZW2diJmJ9fm5ZHO0GTogioevoG:IaEwREKop1wcEwPkam3HcpuWRE

Score

10^/10

mirai owari defense_evasion discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

arm.elf

Resource

debian9-armhf-20240611-en

defense_evasion discovery

debian-9-armhf

6 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

OWARI

Targets

- Target
  
  arm.elf
- Size
  
  98KB
- MD5
  
  6d07db847488c4aa24c3c993a0e9ce12
- SHA1
  
  6657d07724bf50071ef779f374a1804af76ff6ea
- SHA256
  
  fc2d055d228fdabf8fda77c8f9959571d564576cbd7e69f4b4743b3a07995a8b
- SHA512
  
  2ebfe0471ce343ef653ec6432928fd662be3883c3bd341bcde77c3b7f6b70dbfef9f719377e27589f31598945bfa542e67839927ae463c5d32e8bad829269580
- SSDEEP
  
  1536:javbmEwNvEKo03L0+2HiNk9mKQ7R04hb3HcpKeZW2diJmJ9fm5ZHO0GTogioevoG:IaEwREKop1wcEwPkam3HcpuWRE
Score

9^/10

defense_evasion discovery
- Contacts a large (221490) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

© 2018-2025

Terms | Privacy