MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 3fe8f73a5c69e473d17af7d34c2c2653ebf78411fdd88efe5752d39464881fb1. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Mirai


Vendor detections: 6


Intelligence 6 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 3fe8f73a5c69e473d17af7d34c2c2653ebf78411fdd88efe5752d39464881fb1
SHA3-384 hash: 253fd9335cdc7441877b243d2d7c3e75a7bab8cae661f725d69d3a8fff586cbb26530fb4b51bb9b7aeb27b07e1aebbe4
SHA1 hash: c8e26e006efda7546c94dfdda62a4911289b6087
MD5 hash: 620aab72ff4be70b10b236e1c169e78a
humanhash: red-nevada-tennis-ack
File name:dlr.ppc
Download: download sample
Signature Mirai
Create hunting rule
File size:1'736 bytes
First seen:2025-12-06 07:28:46 UTC
Last seen:2025-12-07 19:50:26 UTC
File type: elf
MIME type:application/x-executable
ssdeep 24:3ori5nSWSxnSWW6S7IOSA6SBARKPfZXei1lyeR7hrVtffnOA23vt6f+jOxHvdzcM:ycc2N7ZXdKeR7hxtffo3vlSH1zcM
TLSH T14531F105F2280817D8E17E746B7B1B879B3B4E130634560469CB9796E5748740D8E49C
Magika elf
Reporter abuse_ch
Tags:elf mirai

Intelligence

File Origin
# of uploads :
4
# of downloads :
87
Origin country :
DE DE
Vendor Threat Intelligence
No detections
Detection(s):
SecuriteInfo.com.Trojan.Linux.GenericKD.63641.29736.14221.UNOFFICIAL
Create hunting rule

Verdict:
Unknown
Threat level:
  0/10
Confidence:
100%
Tags:
masquerade
Link:
https://www.filescan.io/uploads/6933db58bba50eaf04241aea/reports/83d60010-c3cf-4ff9-aaeb-e3f7ab765ae0/overview
Verdict:
Malicious
File Type:
elf.32.be
First seen:
2025-12-06T06:30:00Z UTC
Last seen:
2025-12-06T15:51:00Z UTC
Hits:
~10
Link:
https://opentip.kaspersky.com/3fe8f73a5c69e473d17af7d34c2c2653ebf78411fdd88efe5752d39464881fb1/results?tab=lookup
Verdict:
Unknown
Link:
https://analyze.intezer.com/analyses/6516d26c-7f5e-499d-8101-4bbc5650b45b
Result
Threat name:
n/a
Detection:
clean
Classification:
n/a
Score:
3 / 100
Link:
https://www.joesandbox.com/analysis/1827859
Behaviour
Behavior Graph:
n/a
Score:
100%
Verdict:
Malware
File Type:
ELF
Link:
https://malprob.io/report/3fe8f73a5c69e473d17af7d34c2c2653ebf78411fdd88efe5752d39464881fb1
Detection:
mirai
Create hunting rule
Link:
https://mwdb.cert.pl/sample/3fe8f73a5c69e473d17af7d34c2c2653ebf78411fdd88efe5752d39464881fb1/
Threat name:
Linux.Trojan.Multiverze
Create hunting rule
Status:
Malicious
First seen:
2025-12-06 07:15:09 UTC
File Type:
ELF32 Big (Exe)
AV detection:
6 of 24 (25.00%)
Threat level:
  5/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=h7upoos4nhshhul267juylbgkpv7pbar7xmi57sxkljzizeid6yq._file
Result
Malware family:
n/a
Score:
  1/10
Tags:
linux
Link:
https://tria.ge/reports/251206-jbhsgszldm/
Verdict:
Unknown
Tags:
n/a
YARA:
n/a
Link:
https://app.threat.zone/submission/ebd4c61f-95c2-4976-a84e-4ed0c604cda5
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.00
Link:
https://yomi.yoroi.company/submissions/3fe8f73a5c69e473d17af7d34c2c2653ebf78411fdd88efe5752d39464881fb1

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

Mirai

elf 3fe8f73a5c69e473d17af7d34c2c2653ebf78411fdd88efe5752d39464881fb1

(this sample)

  
URLhaus
https://urlhaus.abuse.ch/url/3726984/
  
Delivery method
Distributed via web download
  
URLhaus
https://urlhaus.abuse.ch/url/3727729/
  
URLhaus
https://urlhaus.abuse.ch/url/3726999/

Comments