Overview

overview

10

Static

static

5

parm7.elf

debian-9-armhf

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    parm7.elf

  • Size

    57KB

  • Sample

    250414-yhzrxazkt3

  • MD5

    879d94931867f6e9995dbd791a5fbd2c

  • SHA1

    ed92c124ed262c8cdd23dc9b61befdeab0bbe2e5

  • SHA256

    d00cd2fe5bbe371d416c98a4f951bc8143ef701bab17e46a5ede39394dff83f3

  • SHA512

    5d68941edf6eae2ab17d9d8b70c92036dd0429a4d37ef9e804460a2538295d3b00219348112bb8d375a66a5c2529951c0de9886f5706c166334aa668f8d46c1b

  • SSDEEP

    1536:+PS4tGPvZTbcmT6mYK3m8JyxVLCYYH9rJ:+PltGHT6mYGmHLCYo9rJ

Score
10/10
miraimiraibotnetdefense_evasiondiscoveryupx

Malware Config

Extracted

Family

mirai

Botnet

MIRAI

Targets

    • Target

      parm7.elf

    • Size

      57KB

    • MD5

      879d94931867f6e9995dbd791a5fbd2c

    • SHA1

      ed92c124ed262c8cdd23dc9b61befdeab0bbe2e5

    • SHA256

      d00cd2fe5bbe371d416c98a4f951bc8143ef701bab17e46a5ede39394dff83f3

    • SHA512

      5d68941edf6eae2ab17d9d8b70c92036dd0429a4d37ef9e804460a2538295d3b00219348112bb8d375a66a5c2529951c0de9886f5706c166334aa668f8d46c1b

    • SSDEEP

      1536:+PS4tGPvZTbcmT6mYK3m8JyxVLCYYH9rJ:+PltGHT6mYGmHLCYo9rJ

    Score
    10/10
    miraimiraibotnetdefense_evasiondiscovery

    • Mirai

      Mirai is a prevalent Linux malware infecting exposed network devices.

      botnetmirai

    • Mirai family

      mirai

    • Deletes itself

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

      defense_evasion

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    behavioral1

MITRE ATT&CK Enterprise v16

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.