mirai | 350fc7822ae13ed0400588bbfacc725f01701ebd8e6a48be34517421b18ce0aa | Triage

Submit
Reports

Overview

overview

Static

static

arm.elf

debian-9-armhf

9

Sharing

General

Target

arm.elf
Size

91KB
Sample

250310-m47tvssk17
MD5

e82d2be7cc3bf861baada6f948ad2248
SHA1

d943ce40929436ca65b41f92a8a017c1e65a3dd8
SHA256

350fc7822ae13ed0400588bbfacc725f01701ebd8e6a48be34517421b18ce0aa
SHA512

24aff91359aa84797008cc0b9037c3c4b6710df87ed4aec0671d9954a4664618da8fd2e0d9d29592cb9eafd2fb54c1873ad8026fba812621e72784b551ffda4c
SSDEEP

1536:fiutfr0D0xoArDPi44bNf1XbVe+nCZoKeZW155Vxgrl3fWCIAvgQ4:fiafZIZCZLwYjnghukgQ4

Score

10^/10

mirai owari defense_evasion discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

arm.elf

Resource

debian9-armhf-20240611-en

defense_evasion discovery

debian-9-armhf

6 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

OWARI

Targets

- Target
  
  arm.elf
- Size
  
  91KB
- MD5
  
  e82d2be7cc3bf861baada6f948ad2248
- SHA1
  
  d943ce40929436ca65b41f92a8a017c1e65a3dd8
- SHA256
  
  350fc7822ae13ed0400588bbfacc725f01701ebd8e6a48be34517421b18ce0aa
- SHA512
  
  24aff91359aa84797008cc0b9037c3c4b6710df87ed4aec0671d9954a4664618da8fd2e0d9d29592cb9eafd2fb54c1873ad8026fba812621e72784b551ffda4c
- SSDEEP
  
  1536:fiutfr0D0xoArDPi44bNf1XbVe+nCZoKeZW155Vxgrl3fWCIAvgQ4:fiafZIZCZLwYjnghukgQ4
Score

9^/10

defense_evasion discovery
- Contacts a large (49304) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

© 2018-2025

Terms | Privacy