mirai | 6673c420588bad2bbfa967f1fd4ad37d4de2a6a2870eadfa2d4312b76f2f320f | Triage

Sharing

General

Target

6673c420588bad2bbfa967f1fd4ad37d4de2a6a2870eadfa2d4312b76f2f320f.elf
Size

62KB
Sample

250306-ep6n9axxaw
MD5

5eaa8cb0b3216983c548636ae6e86855
SHA1

92eff4c74f255f5f79d38b3ca1c53ae62c8e5607
SHA256

6673c420588bad2bbfa967f1fd4ad37d4de2a6a2870eadfa2d4312b76f2f320f
SHA512

271860281ccb96ffa98bc000833a50c0f67aa865a21848695104e2d5564f5d132082784443468cec083411590cce4eb78c0a26a93df18a7e1f78415c029b4ae8
SSDEEP

1536:Rkkiirjwnh3A1HsyjmIdyYWCQtQQxBNSdnLTt:Oyrjwnh3AdsyjDdDW3ZxBGLTt

Score

10^/10

mirai demons discovery linux

Malware Config

Extracted

Family

mirai

Botnet

DEMONS

Targets

- Target
  
  6673c420588bad2bbfa967f1fd4ad37d4de2a6a2870eadfa2d4312b76f2f320f.elf
- Size
  
  62KB
- MD5
  
  5eaa8cb0b3216983c548636ae6e86855
- SHA1
  
  92eff4c74f255f5f79d38b3ca1c53ae62c8e5607
- SHA256
  
  6673c420588bad2bbfa967f1fd4ad37d4de2a6a2870eadfa2d4312b76f2f320f
- SHA512
  
  271860281ccb96ffa98bc000833a50c0f67aa865a21848695104e2d5564f5d132082784443468cec083411590cce4eb78c0a26a93df18a7e1f78415c029b4ae8
- SSDEEP
  
  1536:Rkkiirjwnh3A1HsyjmIdyYWCQtQQxBNSdnLTt:Oyrjwnh3AdsyjDdDW3ZxBGLTt
Score

6^/10

discovery
- Enumerates active TCP sockets
  Gets active TCP sockets from /proc virtual filesystem.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Internet Connection Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1