Overview

overview

10

Static

static

5

3eb1e68f45...2a.elf

debian-12-mipsel

10

Analysis

  • max time kernel
    134s
  • max time network
    160s
  • platform
    debian-12_mipsel
  • resource
    debian12-mipsel-20240221-en
  • resource tags

    arch:mipselimage:debian12-mipsel-20240221-enkernel:6.1.0-17-4kc-maltalocale:en-usos:debian-12-mipselsystem
  • submitted
    10/03/2025, 02:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3eb1e68f451c399e25ec3fd43209d0c092eb833eed11da4ca3c5db6472fae22a.elf

  • Size

    45KB

  • MD5

    0cd926976a6c616ebf338a7bf8f329b8

  • SHA1

    001184787ad85fd36ff71f43a97e2319df71e562

  • SHA256

    3eb1e68f451c399e25ec3fd43209d0c092eb833eed11da4ca3c5db6472fae22a

  • SHA512

    546f35a20273830524de19d7d2b9785988fa0f3842f6b2c955e8d36c2bbe714de269850cbb9d4f9bd42e62ba42ea0fa8c57ec64941fa9a78faa5aea7fa267cbd

  • SSDEEP

    768:Pur86Sp3kFr5ahiwxthTxb3tmIbv0el1T/bFYK6oMG4M5JHpbWS:Gry8I3/55bvzl1soMG4MnJP

Score
10/10
mirailzrdbotnetdefense_evasion

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Signatures

  • Mirai

    Mirai is a prevalent Linux malware infecting exposed network devices.

    botnetmirai
  • Mirai family
    mirai
  • Modifies Watchdog functionality 1 TTPs 2 IoCs

    Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    defense_evasion

Processes

  • /tmp/3eb1e68f451c399e25ec3fd43209d0c092eb833eed11da4ca3c5db6472fae22a.elf
    /tmp/3eb1e68f451c399e25ec3fd43209d0c092eb833eed11da4ca3c5db6472fae22a.elf
    1⤵
    • Modifies Watchdog functionality
    PID:741

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads