mirai | 5b39d2a24f3aebcacfd4da62b03e0758955b5286a13ff2292ed56bd422562689 | Triage

Sharing

General

Target

morte.arm7.elf
Size

98KB
Sample

250311-2f3bssythz
MD5

65f41b57ffc395d5e0dc45a2e3756f2f
SHA1

25d2eef6eb4de62b36c9791555f4c8fc1f716f62
SHA256

5b39d2a24f3aebcacfd4da62b03e0758955b5286a13ff2292ed56bd422562689
SHA512

9ecbe1379b8fb7d7ffbc0cce5b269d8ee0ab6f099973ee2764c52eba3a1f1bfa8591eb7d6f7a95945b5c821f32f83cff724c28bb08d6d8a51eedbb24e720afa2
SSDEEP

1536:SBnKPYZnyzyhJ9BPeKsPWdvkoIql4GgiF+C3fEwhNCzw/9Nl1PysqF:V6nysPeKsPWdvb/+C3frhcM/9Nl16N

Score

10^/10

mirai lzrd defense_evasion

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

- Target
  
  morte.arm7.elf
- Size
  
  98KB
- MD5
  
  65f41b57ffc395d5e0dc45a2e3756f2f
- SHA1
  
  25d2eef6eb4de62b36c9791555f4c8fc1f716f62
- SHA256
  
  5b39d2a24f3aebcacfd4da62b03e0758955b5286a13ff2292ed56bd422562689
- SHA512
  
  9ecbe1379b8fb7d7ffbc0cce5b269d8ee0ab6f099973ee2764c52eba3a1f1bfa8591eb7d6f7a95945b5c821f32f83cff724c28bb08d6d8a51eedbb24e720afa2
- SSDEEP
  
  1536:SBnKPYZnyzyhJ9BPeKsPWdvkoIql4GgiF+C3fEwhNCzw/9Nl1PysqF:V6nysPeKsPWdvb/+C3frhcM/9Nl16N
Score

7^/10

defense_evasion
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasion