MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 58dd71aaa4f164ec08db9d54e30773965f5a37db5c4bf10109f04a3cd7a45c76. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Mirai


Vendor detections: 4


Intelligence 4 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 58dd71aaa4f164ec08db9d54e30773965f5a37db5c4bf10109f04a3cd7a45c76
SHA3-384 hash: d6f8826b92ff213340c5ddb4fdff62fd4dd2bd6562b1fb865d89b3fa15a3bad70d52c28417ac55de96d00fb4d7c8af83
SHA1 hash: bf5c885bfb4490532e2a288ff967d724bb19274b
MD5 hash: d168b27b5e2467b6e6d43339474abfeb
humanhash: march-bulldog-autumn-summer
File name:arm6
Download: download sample
Signature Mirai
Create hunting rule
File size:3'833 bytes
First seen:2026-01-07 19:04:46 UTC
Last seen:Never
File type: elf
MIME type:application/x-executable
ssdeep 96:kXp5j6u+k0LIFLLwPnuGBhdewuaZfyo+qoAiK:QpodkhF3cnuSdd+A5
TLSH T100817C8664633D83F44F1937A82503DEE70A584FA44B0E49DCE19D2BABFB34A081F099
TrID 50.1% (.) ELF Executable and Linkable format (Linux) (4022/12)
49.8% (.O) ELF Executable and Linkable format (generic) (4000/1)
Magika elf
Reporter abuse_ch
Tags:elf mirai

Intelligence

File Origin
# of uploads :
1
# of downloads :
63
Origin country :
DE DE
Vendor Threat Intelligence
No detections
Result
Verdict:
Clean
Maliciousness:
Verdict:
Unknown
Threat level:
  0/10
Confidence:
100%
Tags:
mirai
Link:
https://www.filescan.io/uploads/695eae73052bc0575b3c212a/reports/06dadf79-a472-49c9-9bde-2352699e5a3e/overview
Verdict:
Unknown
File Type:
elf.32.le
Link:
https://opentip.kaspersky.com/58dd71aaa4f164ec08db9d54e30773965f5a37db5c4bf10109f04a3cd7a45c76/results?tab=lookup
Status:
terminated
Link:
https://sandbox.kunai.rocks/analysis/1e08603a-ab43-485b-a615-186b415d018a
Behavior Graph:
Download SVG
%3 guuid=804a176b-1900-0000-a316-dda84f100000 pid=4175 /usr/bin/sudo guuid=90a6e26c-1900-0000-a316-dda858100000 pid=4184 /tmp/sample.bin guuid=804a176b-1900-0000-a316-dda84f100000 pid=4175->guuid=90a6e26c-1900-0000-a316-dda858100000 pid=4184 execve
Verdict:
Unknown
Link:
https://analyze.intezer.com/analyses/f6db1fab-55c2-4aca-b4f8-7c2a5b0a2c3b
Result
Threat name:
n/a
Detection:
clean
Classification:
n/a
Score:
2 / 100
Link:
https://www.joesandbox.com/analysis/1846268
Behaviour
Behavior Graph:
n/a
Score:
100%
Verdict:
Malware
File Type:
ELF
Link:
https://malprob.io/report/58dd71aaa4f164ec08db9d54e30773965f5a37db5c4bf10109f04a3cd7a45c76
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/58dd71aaa4f164ec08db9d54e30773965f5a37db5c4bf10109f04a3cd7a45c76/
Threat name:
Linux.Worm.Mirai
Create hunting rule
Status:
Malicious
First seen:
2026-01-07 19:05:27 UTC
File Type:
ELF32 Little (Exe)
AV detection:
5 of 23 (21.74%)
Threat level:
  5/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=ldoxdkve6fsoycg3tvkogb3tszpvun63lrf7caij6bfdzv5elr3a._file
Result
Malware family:
n/a
Score:
  5/10
Tags:
upx
Link:
https://tria.ge/reports/260107-xrpsmagy2g/
Verdict:
Unknown
Tags:
n/a
YARA:
n/a
Link:
https://app.threat.zone/submission/60e8334a-bf2d-423b-bc41-2d65f8aebf82
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.00
Link:
https://yomi.yoroi.company/submissions/58dd71aaa4f164ec08db9d54e30773965f5a37db5c4bf10109f04a3cd7a45c76

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

Mirai

elf 58dd71aaa4f164ec08db9d54e30773965f5a37db5c4bf10109f04a3cd7a45c76

(this sample)

  
URLhaus
https://urlhaus.abuse.ch/url/3713667/
  
Delivery method
Distributed via web download

Comments