mirai | 93e7103ffb57efca6b19e27ae8fcb02f41a1721b36b89b065698e7d30d5e495a | Triage

Sharing

General

Target

93e7103ffb57efca6b19e27ae8fcb02f41a1721b36b89b065698e7d30d5e495a.elf
Size

106KB
Sample

250320-d6gwsastfv
MD5

16777fbd71aeed89ae308c247a6705aa
SHA1

2d6397b0424cf86291fa86bcdb73fc9ca54a2e3e
SHA256

93e7103ffb57efca6b19e27ae8fcb02f41a1721b36b89b065698e7d30d5e495a
SHA512

fcfca64f2436c0e27568b4013692f9e3eeef5adc515de2e8c56ce07330cd1600e6f43cd7b4cb848ab221ae46ce7799ff54588f04efde706abc52c36ca241d13c
SSDEEP

1536:10nQQKZYERfI20c7pkdjpeFxqzkRjRmXR+fqhlBJe9UBt410qwTf:OnqZxxIHcKaxqzkRjYXR+fqhlBvBu7w7

Score

10^/10

mirai demons discovery

Malware Config

Extracted

Family

mirai

Botnet

DEMONS

Targets

- Target
  
  93e7103ffb57efca6b19e27ae8fcb02f41a1721b36b89b065698e7d30d5e495a.elf
- Size
  
  106KB
- MD5
  
  16777fbd71aeed89ae308c247a6705aa
- SHA1
  
  2d6397b0424cf86291fa86bcdb73fc9ca54a2e3e
- SHA256
  
  93e7103ffb57efca6b19e27ae8fcb02f41a1721b36b89b065698e7d30d5e495a
- SHA512
  
  fcfca64f2436c0e27568b4013692f9e3eeef5adc515de2e8c56ce07330cd1600e6f43cd7b4cb848ab221ae46ce7799ff54588f04efde706abc52c36ca241d13c
- SSDEEP
  
  1536:10nQQKZYERfI20c7pkdjpeFxqzkRjRmXR+fqhlBJe9UBt410qwTf:OnqZxxIHcKaxqzkRjYXR+fqhlBvBu7w7
Score

6^/10

discovery
- Enumerates active TCP sockets
  Gets active TCP sockets from /proc virtual filesystem.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Internet Connection Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1