mirai | d0efd99ea597554e1e1505a8a1c54a2a72515983b159974898a9f9ab0568b72b | Triage

Submit
Reports

Overview

overview

Static

static

5

ub8ehJSePA...rm.elf

debian-9-armhf

Sharing

General

Target

ub8ehJSePAfc9FYqZIT6.arm.elf
Size

38KB
Sample

250401-dj36hasvcx
MD5

74f2a71590cd7cd32974754b304cb291
SHA1

4bf35e76d3744cf06cb90ef5bc7708961a9b136a
SHA256

d0efd99ea597554e1e1505a8a1c54a2a72515983b159974898a9f9ab0568b72b
SHA512

9e73f2f3f5659af662ae3ebd588df1749eb34210cb15e2351eb41468df43a0b467e60d6c42831688f9c3c461d87d5ee46ab170f0cca616fa800cf8e3eab41d10
SSDEEP

768:CaVlhT1/12NhX33JRqFdHOyk9egvFq7VpE5RIpwHFc5dxx5HzQtQUSbOy6IcKhlT:DhT1/qn3JQduJekFqxa53HFc98QvOZRM

Score

10^/10

mirai lzrd botnet defense_evasion discovery upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ub8ehJSePAfc9FYqZIT6.arm.elf

Resource

debian9-armhf-20240611-en

mirai lzrd botnet defense_evasion discovery

debian-9-armhf

6 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

- Target
  
  ub8ehJSePAfc9FYqZIT6.arm.elf
- Size
  
  38KB
- MD5
  
  74f2a71590cd7cd32974754b304cb291
- SHA1
  
  4bf35e76d3744cf06cb90ef5bc7708961a9b136a
- SHA256
  
  d0efd99ea597554e1e1505a8a1c54a2a72515983b159974898a9f9ab0568b72b
- SHA512
  
  9e73f2f3f5659af662ae3ebd588df1749eb34210cb15e2351eb41468df43a0b467e60d6c42831688f9c3c461d87d5ee46ab170f0cca616fa800cf8e3eab41d10
- SSDEEP
  
  768:CaVlhT1/12NhX33JRqFdHOyk9egvFq7VpE5RIpwHFc5dxx5HzQtQUSbOy6IcKhlT:DhT1/qn3JQduJekFqxa53HFc98QvOZRM
Score

10^/10

mirai lzrd botnet defense_evasion discovery
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Mirai family
  mirai
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
- Enumerates running processes
  Discovers information about currently running processes on the system
- Writes file to system bin folder
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mirailzrdbotnetdefense_evasiondiscovery

© 2018-2025

Terms | Privacy