mirai | c70c7d6288ddd3de1e999fef3e15a4cb7d23656de44209d834ea08c97f26f2c3 | Triage

Submit
Reports

Overview

overview

Static

static

5

sora.mips

debian-9-mips

Sharing

General

Target

sora.mips
Size

28KB
Sample

250408-l62vystjv3
MD5

c665be249de8aacbf7f020710556850f
SHA1

7bf15fe8983c1a7304ecb626385fd8d656657750
SHA256

c70c7d6288ddd3de1e999fef3e15a4cb7d23656de44209d834ea08c97f26f2c3
SHA512

2125eacc929f9f6ab5232960153e3a3c2d554cd3f65fa7fb97324a275ce27034621999f2922aaa2a4beeeda75d09b2ff89aab6417e2f93329f56ce2529cd14d8
SSDEEP

768:9Yva6tyRjdLVM1ZnRMy6gidymlShZtYAH1n/HJgGlzDpbuR1JI:9YvZtyRphMPRDid0pHHRtVJuG

Score

10^/10

mirai sora botnet defense_evasion discovery upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

sora.mips

Resource

debian9-mipsbe-20240611-en

mirai sora botnet defense_evasion discovery

debian-9-mips

8 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

SORA

Targets

- Target
  
  sora.mips
- Size
  
  28KB
- MD5
  
  c665be249de8aacbf7f020710556850f
- SHA1
  
  7bf15fe8983c1a7304ecb626385fd8d656657750
- SHA256
  
  c70c7d6288ddd3de1e999fef3e15a4cb7d23656de44209d834ea08c97f26f2c3
- SHA512
  
  2125eacc929f9f6ab5232960153e3a3c2d554cd3f65fa7fb97324a275ce27034621999f2922aaa2a4beeeda75d09b2ff89aab6417e2f93329f56ce2529cd14d8
- SSDEEP
  
  768:9Yva6tyRjdLVM1ZnRMy6gidymlShZtYAH1n/HJgGlzDpbuR1JI:9YvZtyRphMPRDid0pHHRtVJuG
Score

10^/10

mirai sora botnet defense_evasion discovery
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Mirai family
  mirai
- Contacts a large (48131) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Network Service Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

miraisorabotnetdefense_evasiondiscovery

© 2018-2025

Terms | Privacy