mirai | 9d404ad212a102d624f3252653f6edf8f6c72254a11e5cf1661a077f659324dc | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

donk.x86.elf

ubuntu-22.04-amd64

7

Sharing

General

Target

donk.x86.elf
Size

62KB
Sample

250306-eb8xfsxrw7
MD5

e7ede966cdb6c65c846c565d71a41fe1
SHA1

5a179d3484609a67d834b98e61abe15eedc5b048
SHA256

9d404ad212a102d624f3252653f6edf8f6c72254a11e5cf1661a077f659324dc
SHA512

218b605f45705d55a81e3e51ede502fe834b9d5cd53c656b2c31bb83db7baee54e4dc3c98bab9bb80c5f0a48f2c8bb1e3d6d7837b10ca894e8c7a7e8a4777672
SSDEEP

1536:Rkkiirjwnh3A1HsyjmIdyYWCQtQQxBNSdnLrt:Oyrjwnh3AdsyjDdDW3ZxBGLrt

Score

10^/10

mirai demons defense_evasion discovery linux

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

donk.x86.elf

Resource

ubuntu2204-amd64-20240522.1-en

defense_evasion discovery

ubuntu-22.04-amd64

5 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

DEMONS

Targets

- Target
  
  donk.x86.elf
- Size
  
  62KB
- MD5
  
  e7ede966cdb6c65c846c565d71a41fe1
- SHA1
  
  5a179d3484609a67d834b98e61abe15eedc5b048
- SHA256
  
  9d404ad212a102d624f3252653f6edf8f6c72254a11e5cf1661a077f659324dc
- SHA512
  
  218b605f45705d55a81e3e51ede502fe834b9d5cd53c656b2c31bb83db7baee54e4dc3c98bab9bb80c5f0a48f2c8bb1e3d6d7837b10ca894e8c7a7e8a4777672
- SSDEEP
  
  1536:Rkkiirjwnh3A1HsyjmIdyYWCQtQQxBNSdnLrt:Oyrjwnh3AdsyjDdDW3ZxBGLrt
Score

7^/10

defense_evasion discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
- Enumerates active TCP sockets
  Gets active TCP sockets from /proc virtual filesystem.
  discovery
- Writes file to system bin folder
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

System Network Configuration Discovery

Internet Connection Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.