MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 3b8fabc3e2093ee2f50b5558ea732ba4bdd675cef2a92e9f4b697a44335c9547. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Mirai


Vendor detections: 10


Intelligence 10 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 3b8fabc3e2093ee2f50b5558ea732ba4bdd675cef2a92e9f4b697a44335c9547
SHA3-384 hash: 78d38466c1d269834fc76e8ab7c85ef5bf5ca309e5f8663d845c034b3362053091a1f7961ffbed30bc800934d3acb1d1
SHA1 hash: ade2b434bf7de9e930aeafb328296145c196ca07
MD5 hash: 0ee89a7d315a8ea652c3fda8d2d3634d
humanhash: venus-uncle-edward-october
File name:boatnet.m68k
Download: download sample
Signature Mirai
Create hunting rule
File size:53'024 bytes
First seen:2026-02-17 19:39:57 UTC
Last seen:Never
File type: elf
MIME type:application/x-executable
ssdeep 1536:BoG7IMHSWSgciVCnXEgc8eh1gBUxCWQ1v7d:4DgcisnXxGu5W+J
TLSH T1373319D6B5019DBCF95BEBBA8413460AF531B7561083063763BBFC53AC362A48E23D91
Magika elf
Reporter abuse_ch
Tags:elf mirai

Intelligence

File Origin
# of uploads :
1
# of downloads :
52
Origin country :
DE DE
Vendor Threat Intelligence
Malware configuration found for:
Mirai
Details
Mirai
an XOR decryption key and at least a c2 socket address
Link:
https://research.acce.ciphertechsolutions.com/results/463f68e8-cdd7-4377-a771-3e9c43493bd9/
Gathering data
Result
Gathering data
Verdict:
Malicious
File Type:
elf.32.be
Detections:
HEUR:Backdoor.Linux.Mirai.b
Link:
https://opentip.kaspersky.com/3b8fabc3e2093ee2f50b5558ea732ba4bdd675cef2a92e9f4b697a44335c9547/results?tab=lookup
Status:
terminated
Link:
https://sandbox.kunai.rocks/analysis/ae2b1231-9f7d-4885-bf65-4bce3651db17
Behavior Graph:
Download SVG
%3 guuid=31282d70-2100-0000-115e-a21cbb0b0000 pid=3003 /usr/bin/sudo guuid=47ffb472-2100-0000-115e-a21cc10b0000 pid=3009 /tmp/sample.bin guuid=31282d70-2100-0000-115e-a21cbb0b0000 pid=3003->guuid=47ffb472-2100-0000-115e-a21cc10b0000 pid=3009 execve
Malware family:
Mirai
Create hunting rule
Verdict:
Malicious
Link:
https://analyze.intezer.com/analyses/48f94f15-913e-4cc2-910b-444b91fe4bd0
Score:
100%
Verdict:
Malware
File Type:
ELF
Link:
https://malprob.io/report/3b8fabc3e2093ee2f50b5558ea732ba4bdd675cef2a92e9f4b697a44335c9547
Detection:
mirai
Create hunting rule
Link:
https://mwdb.cert.pl/sample/3b8fabc3e2093ee2f50b5558ea732ba4bdd675cef2a92e9f4b697a44335c9547/
Verdict:
Malicious
Threat:
Family.MIRAI
Link:
https://tip.neiki.dev/file/3b8fabc3e2093ee2f50b5558ea732ba4bdd675cef2a92e9f4b697a44335c9547
Threat name:
Linux.Worm.Mirai
Create hunting rule
Status:
Malicious
First seen:
2026-02-17 13:54:46 UTC
File Type:
ELF32 Big (Exe)
AV detection:
21 of 36 (58.33%)
Threat level:
  5/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=hoh2xq7cbe7of5ilkvmou4zlus65m5oo6kus5h2lnf5eim24svdq._file
Result
Malware family:
mirai
Create hunting rule
Score:
  10/10
Tags:
family:mirai botnet:lzrd linux
Link:
https://tria.ge/reports/260217-ydpq5sbs6e/
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Suspicious File
Score:
0.64
Link:
https://yomi.yoroi.company/submissions/3b8fabc3e2093ee2f50b5558ea732ba4bdd675cef2a92e9f4b697a44335c9547

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

Mirai

elf 3b8fabc3e2093ee2f50b5558ea732ba4bdd675cef2a92e9f4b697a44335c9547

(this sample)

  
URLhaus
https://urlhaus.abuse.ch/url/3779310/
  
Delivery method
Distributed via web download

Comments