mirai | a30c096e04c83b895b6172c51c8c91e5095220b83de5fe77c55be6f0e77379a0 | Triage

Submit
Reports

Overview

overview

Static

static

zermpsl.elf

debian-12-mipsel

7

Sharing

General

Target

zermpsl.elf
Size

66KB
Sample

250310-cdfycaywax
MD5

2e0d7252bae4a9e3039332fa15ea241c
SHA1

e6fd1144254105f7519f8e44871d36f527fc59e8
SHA256

a30c096e04c83b895b6172c51c8c91e5095220b83de5fe77c55be6f0e77379a0
SHA512

000f2cacc475c6411705ca35e7638259d6724633a091e6fcb7b7a21b44779fa71f34f12cfe0e6916a30d3cda279bcd44ab71ca1fbf0d04155dba30657be8d154
SSDEEP

768:XCBEtfJ+/PmzmeQ6jPMMLfOqB5EzeLneZReggk1GtBqJXiWUrzkEtHm:XCB+x+/PmblXWqBqqncRVgk1Gi6ztG

Score

10^/10

mirai defense_evasion discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

zermpsl.elf

Resource

debian12-mipsel-20240221-en

defense_evasion discovery

debian-12-mipsel

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  zermpsl.elf
- Size
  
  66KB
- MD5
  
  2e0d7252bae4a9e3039332fa15ea241c
- SHA1
  
  e6fd1144254105f7519f8e44871d36f527fc59e8
- SHA256
  
  a30c096e04c83b895b6172c51c8c91e5095220b83de5fe77c55be6f0e77379a0
- SHA512
  
  000f2cacc475c6411705ca35e7638259d6724633a091e6fcb7b7a21b44779fa71f34f12cfe0e6916a30d3cda279bcd44ab71ca1fbf0d04155dba30657be8d154
- SSDEEP
  
  768:XCBEtfJ+/PmzmeQ6jPMMLfOqB5EzeLneZReggk1GtBqJXiWUrzkEtHm:XCB+x+/PmblXWqBqqncRVgk1Gi6ztG
Score

7^/10

defense_evasion discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
- Renames itself
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

© 2018-2025

Terms | Privacy