mirai | 8cb36b247d2d74503df79048a85a3abfafdeaf563b7daf6e4ae7324360010182 | Triage

Submit
Reports

Overview

overview

Static

static

jew.x86.elf

ubuntu-22.04-amd64

9

Sharing

General

Target

jew.x86.elf
Size

56KB
Sample

240701-z3wfnazeme
MD5

50a5b547070afd28efdf4b9770e3a72b
SHA1

d34e5ff36e8c0794de62a7383ad01e5e3158b772
SHA256

8cb36b247d2d74503df79048a85a3abfafdeaf563b7daf6e4ae7324360010182
SHA512

d3a8330d5ecbd8c37e5e5e0d3e782a949b1316090385af9a0ca8990f22cdbc772b91a112c1a0b88c1b4d89aaff7566d137f96f3285493502f4bb720218de6db5
SSDEEP

1536:a5QoxX5EZuffRoBr74cHMMqd4KS+goFsbuoIpQIUl1r4DZgkgV1hh:aXxXyZuf5oBrEcSd4KZgoakQVfr4dgZH

Score

10^/10

mirai kurc discovery linux

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

jew.x86.elf

Resource

ubuntu2204-amd64-20240522.1-en

ubuntu-22.04-amd64

5 signatures

150 seconds

Malware Config

Extracted

Family

mirai

Botnet

KURC

Targets

- Target
  
  jew.x86.elf
- Size
  
  56KB
- MD5
  
  50a5b547070afd28efdf4b9770e3a72b
- SHA1
  
  d34e5ff36e8c0794de62a7383ad01e5e3158b772
- SHA256
  
  8cb36b247d2d74503df79048a85a3abfafdeaf563b7daf6e4ae7324360010182
- SHA512
  
  d3a8330d5ecbd8c37e5e5e0d3e782a949b1316090385af9a0ca8990f22cdbc772b91a112c1a0b88c1b4d89aaff7566d137f96f3285493502f4bb720218de6db5
- SSDEEP
  
  1536:a5QoxX5EZuffRoBr74cHMMqd4KS+goFsbuoIpQIUl1r4DZgkgV1hh:aXxXyZuf5oBrEcSd4KZgoakQVfr4dgZH
Score

9^/10

discovery
- Contacts a large (118147) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Writes file to system bin folder
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Hijack Execution Flow

Privilege Escalation

Hijack Execution Flow

Defense Evasion

Impair Defenses

Hijack Execution Flow

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy