mirai | a9ef6557ac849b117330a96fa1a68f595f7f8706892047bd605750bf4e5c2fbb | Triage

Submit
Reports

Overview

overview

Static

static

7

sora.mpsl.elf

debian-9-mipsel

Sharing

General

Target

sora.mpsl.elf
Size

29KB
Sample

240630-hnmrjavbld
MD5

51d75490752ff6720566784cbb865bb4
SHA1

a9c7582e33a7533b0bb8f51bd1b64363aec8572c
SHA256

a9ef6557ac849b117330a96fa1a68f595f7f8706892047bd605750bf4e5c2fbb
SHA512

ed551a303f0f7c6bf349799d6cb07d3bf87d9c055797d8072af4a6c5d8d6bb4ba7ec6eb81593b6d24aae9454424c92587b5772b7d05fb90a14aa43c040de5969
SSDEEP

768:a1uUtLrVDsAp6tLIWmj3HfiM4o/6YGvVbWym/bs2JbsWU2:abDs06tURj5xXGvlKTs2g2

Score

10^/10

mirai sora botnet discovery upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

sora.mpsl.elf

Resource

debian9-mipsel-20240226-en

mirai sora botnet discovery

debian-9-mipsel

6 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

SORA

Targets

- Target
  
  sora.mpsl.elf
- Size
  
  29KB
- MD5
  
  51d75490752ff6720566784cbb865bb4
- SHA1
  
  a9c7582e33a7533b0bb8f51bd1b64363aec8572c
- SHA256
  
  a9ef6557ac849b117330a96fa1a68f595f7f8706892047bd605750bf4e5c2fbb
- SHA512
  
  ed551a303f0f7c6bf349799d6cb07d3bf87d9c055797d8072af4a6c5d8d6bb4ba7ec6eb81593b6d24aae9454424c92587b5772b7d05fb90a14aa43c040de5969
- SSDEEP
  
  768:a1uUtLrVDsAp6tLIWmj3HfiM4o/6YGvVbWym/bs2JbsWU2:abDs06tURj5xXGvlKTs2g2
Score

10^/10

mirai sora botnet discovery
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Contacts a large (48510) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

miraisorabotnetdiscovery

© 2018-2024

Terms | Privacy