mirai | 707c76833704af2127fbbd2ababe61c417340b3fe8c12cedd8caa2122afecc29 | Triage

Submit
Reports

Overview

overview

Static

static

mirai.mips.elf

debian-9-mips

9

Sharing

General

Target

mirai.mips.elf
Size

77KB
Sample

250411-xjnwcsxway
MD5

5e00919715880970cba91795d7078453
SHA1

b5ad4293488c439004670801555677bde3368220
SHA256

707c76833704af2127fbbd2ababe61c417340b3fe8c12cedd8caa2122afecc29
SHA512

2d5b388de442999b22c76b02b3b4b3448dfa53a6348f2d557f5761c9e02b81194c7a7ff668da4a560febe0f5fcd2ceaac40181259eae0b79b2dbfab03e3f4934
SSDEEP

1536:DM8dlkyCuyPlr51SUJCGy99wOYf8Pzqaa4enN4a:w+5CuyP5GUJCGK9zqaa4enOa

Score

10^/10

mirai mirai defense_evasion discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

mirai.mips.elf

Resource

debian9-mipsbe-20240418-en

defense_evasion discovery

debian-9-mips

8 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

MIRAI

Targets

- Target
  
  mirai.mips.elf
- Size
  
  77KB
- MD5
  
  5e00919715880970cba91795d7078453
- SHA1
  
  b5ad4293488c439004670801555677bde3368220
- SHA256
  
  707c76833704af2127fbbd2ababe61c417340b3fe8c12cedd8caa2122afecc29
- SHA512
  
  2d5b388de442999b22c76b02b3b4b3448dfa53a6348f2d557f5761c9e02b81194c7a7ff668da4a560febe0f5fcd2ceaac40181259eae0b79b2dbfab03e3f4934
- SSDEEP
  
  1536:DM8dlkyCuyPlr51SUJCGy99wOYf8Pzqaa4enN4a:w+5CuyP5GUJCGK9zqaa4enOa
Score

9^/10

defense_evasion discovery
- Contacts a large (23674) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Deletes itself
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
- Enumerates active TCP sockets
  Gets active TCP sockets from /proc virtual filesystem.
  discovery
behavioral1

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Network Service Discovery

System Network Configuration Discovery

Internet Connection Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

© 2018-2025

Terms | Privacy