Overview

overview

10

Static

static

5

eb394bf975...72b3d0

ubuntu-24.04-amd64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    eb394bf9755e417701235fccb542807296c690850630f0391df175a2a872b3d0

  • Size

    60KB

  • Sample

    250402-b1mhza1rs3

  • MD5

    832cf70f7a142ed654804c15171f1dad

  • SHA1

    c4a13abe90eb0ecd706bf89e48322ad618d7b5f9

  • SHA256

    eb394bf9755e417701235fccb542807296c690850630f0391df175a2a872b3d0

  • SHA512

    1b5c6b124db22c3705eb25ea9c209986c6d931907554b95e7a9a34469d8760d127cc6dc17134d1f1e7e94b4ef0364088b3e1a43bf19843d450a100818e98b073

  • SSDEEP

    1536:6aF8D+xVQ7aUFMFUkEFarag8CMrkM7InwIafF+XVgq:6as+xm7aUO1EUaSxytFs

Score
10/10
mirailzrdbotnetdefense_evasiondiscoverylinuxupx

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

    • Target

      eb394bf9755e417701235fccb542807296c690850630f0391df175a2a872b3d0

    • Size

      60KB

    • MD5

      832cf70f7a142ed654804c15171f1dad

    • SHA1

      c4a13abe90eb0ecd706bf89e48322ad618d7b5f9

    • SHA256

      eb394bf9755e417701235fccb542807296c690850630f0391df175a2a872b3d0

    • SHA512

      1b5c6b124db22c3705eb25ea9c209986c6d931907554b95e7a9a34469d8760d127cc6dc17134d1f1e7e94b4ef0364088b3e1a43bf19843d450a100818e98b073

    • SSDEEP

      1536:6aF8D+xVQ7aUFMFUkEFarag8CMrkM7InwIafF+XVgq:6as+xm7aUO1EUaSxytFs

    Score
    10/10
    mirailzrdbotnetdefense_evasiondiscovery

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

      botnetmirai

    • Mirai family

      mirai

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

      defense_evasion

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Writes file to system bin folder

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks