General
-
Target
0c9fc61ecbc6d21e9780d71dd156614b54c01e0fa6e120f8f46b810bba18450a.sh
-
Size
2KB
-
Sample
250309-cf7h3swpv8
-
MD5
8a2a6c948d201883b09f9c5bbedaca00
-
SHA1
c26e8adbd7df878c6484ad6d080b596c6c4f915e
-
SHA256
0c9fc61ecbc6d21e9780d71dd156614b54c01e0fa6e120f8f46b810bba18450a
-
SHA512
fe2a381e44459defa01524d05f45532d2dbc75b2bc9db4ea42c7624f7811b05eba2dda5e200e04c5dd46ecacf37ffabe268907feeb4256fd8d4a57e0216bdceb
Malware Config
Extracted
mirai
botnet1.uapworx1.sbs
Targets
-
-
Target
0c9fc61ecbc6d21e9780d71dd156614b54c01e0fa6e120f8f46b810bba18450a.sh
-
Size
2KB
-
MD5
8a2a6c948d201883b09f9c5bbedaca00
-
SHA1
c26e8adbd7df878c6484ad6d080b596c6c4f915e
-
SHA256
0c9fc61ecbc6d21e9780d71dd156614b54c01e0fa6e120f8f46b810bba18450a
-
SHA512
fe2a381e44459defa01524d05f45532d2dbc75b2bc9db4ea42c7624f7811b05eba2dda5e200e04c5dd46ecacf37ffabe268907feeb4256fd8d4a57e0216bdceb
Score10/10-
Mirai
Mirai is a prevalent Linux malware infecting exposed network devices.
-
Mirai family
-
File and Directory Permissions Modification
Adversaries may modify file or directory permissions to evade defenses.
-
Deletes itself
-
Executes dropped EXE
-
Traces itself
Traces itself to prevent debugging attempts
-
MITRE ATT&CK Enterprise v15
Defense Evasion
File and Directory Permissions Modification
1Linux and Mac File and Directory Permissions Modification
1Virtualization/Sandbox Evasion
1System Checks
1