6ff23721d3b6c6677de0ee75d7d8c65baae779ebf87e090e1fd031f0bf02ea6e

Analysis

max time kernel
0s
max time network
128s
platform
ubuntu-22.04_amd64
resource
ubuntu2204-amd64-20250410-en
resource tags

arch:amd64arch:i386image:ubuntu2204-amd64-20250410-enkernel:5.15.0-105-genericlocale:en-usos:ubuntu-22.04-amd64system
submitted
11/04/2025, 18:53

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

mirai.x86.elf
Size

54KB
MD5

014a0d28c6684fa6486fc344c246f69c
SHA1

611a1dcfd5a6dcf5bc4d433c91dc912f19885e9d
SHA256

6ff23721d3b6c6677de0ee75d7d8c65baae779ebf87e090e1fd031f0bf02ea6e
SHA512

36a71bf3a1bae29b02da543c7a3b9c6be02149e4ee6e0bcf7267abfcb8bb46e1e89ebc5becc5b3e92c749620e6e11df2a66c0cad76b42d1b7e26874d65c7a0df
SSDEEP

1536:7Mxtjx62+Ypjj+FFDLB/Ek8jOhC8jTXjUvzIkPR0:7AxF+YpjEFHBcHOn47IEq

Score

7^/10

defense_evasion

Malware Config

Signatures

Deletes itself 1 IoCs

pid
1568

Modifies Watchdog functionality 1 TTPs 2 IoCs

Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

defense_evasion

Impair Defenses

T1562

description	ioc
File opened for modification	/dev/watchdog
File opened for modification	/dev/misc/watchdog

Network

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

T1562

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v16

Replay Monitor

Loading Replay Monitor...

Downloads