mirai | 5d86114045619d1d7dffc82a1f9f10ea7d26cdb5759eef8de48642ef4cd1802b | Triage

Sharing

General

Target

5d86114045619d1d7dffc82a1f9f10ea7d26cdb5759eef8de48642ef4cd1802b.elf
Size

43KB
Sample

250310-ctxk2azj16
MD5

bcd4c131acd85c62c41deb575bcd3e59
SHA1

5bfb7a979e878e647002ae34852afba1e40793e9
SHA256

5d86114045619d1d7dffc82a1f9f10ea7d26cdb5759eef8de48642ef4cd1802b
SHA512

88bba909f555f5ba67fc3e1ef14d4e72a2b79e6de79c68f21bd7b328b758bcdd3fa58e10ecae846e01597f2ce3652e654a6173bbcff3b5ae93642c40ed1b51e5
SSDEEP

768:u7Val26HnOx37iu0k0FSA8Aa0EzS5GHjgiyZskrQbEo1lfdDUhuMHTM+TGx072ZJ:uQlDHsLimMnBCS5GDgVZcEonFAhuK6bH

Score

10^/10

mirai lzrd botnet defense_evasion linux upx

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

- Target
  
  5d86114045619d1d7dffc82a1f9f10ea7d26cdb5759eef8de48642ef4cd1802b.elf
- Size
  
  43KB
- MD5
  
  bcd4c131acd85c62c41deb575bcd3e59
- SHA1
  
  5bfb7a979e878e647002ae34852afba1e40793e9
- SHA256
  
  5d86114045619d1d7dffc82a1f9f10ea7d26cdb5759eef8de48642ef4cd1802b
- SHA512
  
  88bba909f555f5ba67fc3e1ef14d4e72a2b79e6de79c68f21bd7b328b758bcdd3fa58e10ecae846e01597f2ce3652e654a6173bbcff3b5ae93642c40ed1b51e5
- SSDEEP
  
  768:u7Val26HnOx37iu0k0FSA8Aa0EzS5GHjgiyZskrQbEo1lfdDUhuMHTM+TGx072ZJ:uQlDHsLimMnBCS5GDgVZcEonFAhuK6bH
Score

10^/10

mirai lzrd botnet defense_evasion
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Mirai family
  mirai
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mirailzrdbotnetdefense_evasion