Overview

overview

10

Static

static

5

boatnet.x86.elf

ubuntu-22.04-amd64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    boatnet.x86.elf

  • Size

    21KB

  • Sample

    250330-v13dzas1ex

  • MD5

    fe7e3da67ac1df36524533e8ba2612da

  • SHA1

    c5b256b9cf69a7c12135fba39834c2d65069e7fa

  • SHA256

    f994f6ea990bf9bb8a34cb9a37f511618fb21ca821c1dc6c0eeefb214a1f7466

  • SHA512

    eaf5a7a4a144b9df128fca6a0bff3fb4b110f984ef6c9ae2a02307952bbc9b0321d55029b874b34e0361b7c55bfe4214eba93f6426a39d189463cbb75396fedc

  • SSDEEP

    384:MvCogarCuOA57RittxH5nKgsOubRRul7WbDN3AxQVndku7UrSyej:9arClt/ZvsPRRulKbJ3hV4xi

Score
10/10
mirailzrdbotnetdefense_evasiondiscoverylinuxupx

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      boatnet.x86.elf

    • Size

      21KB

    • MD5

      fe7e3da67ac1df36524533e8ba2612da

    • SHA1

      c5b256b9cf69a7c12135fba39834c2d65069e7fa

    • SHA256

      f994f6ea990bf9bb8a34cb9a37f511618fb21ca821c1dc6c0eeefb214a1f7466

    • SHA512

      eaf5a7a4a144b9df128fca6a0bff3fb4b110f984ef6c9ae2a02307952bbc9b0321d55029b874b34e0361b7c55bfe4214eba93f6426a39d189463cbb75396fedc

    • SSDEEP

      384:MvCogarCuOA57RittxH5nKgsOubRRul7WbDN3AxQVndku7UrSyej:9arClt/ZvsPRRulKbJ3hV4xi

    Score
    10/10
    mirailzrdbotnetdefense_evasiondiscovery

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

      botnetmirai

    • Mirai family

      mirai

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

      defense_evasion

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Writes file to system bin folder

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks