Extracted

• • Target

    399233084a4f362d6f748718575926b13d55a4115d16c28a60698379b774fd69.elf

  • Size

    40KB

  • MD5

    2c29e9d5b0bfd0d7d817a79cd813c3f6

  • SHA1

    61685967e1b036b0925be464cb66fb288c31babf

  • SHA256

    399233084a4f362d6f748718575926b13d55a4115d16c28a60698379b774fd69

  • SHA512

    c8d8ffd8d3733ec7eaaab13e9b416c298fdfb0d259566a5e8143a482137afe4914283e263cb2506aa4e7b7809b3252d369f786c129e35f3c5e79e71272daa955

  • SSDEEP

    768:fWwL2y1vGYbuTHtHtoAe02sPo0XuG+EfZPRK9OScT/3WMp:uwL2SuNpZJPov5EfF09OScTp

  Score

  10^/10

  miraimiraibotnetdefense_evasiondiscovery

  • Mirai

    Mirai is a prevalent Linux malware infecting exposed network devices.

    botnetmirai

  • Mirai family

    mirai

  • Contacts a large (196241) amount of remote hosts

    This may indicate a network scan to discover remotely running services.

    discovery

  • Creates a large amount of network flows

    This may indicate a network scan to discover remotely running services.

    discovery

  • File and Directory Permissions Modification

    Adversaries may modify file or directory permissions to evade defenses.

    defense_evasion
  behavioral1