MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 78b84e3a6754abc58dffefec630c24d0e050390178b69e3a771a89d99dd78217. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Mirai


Vendor detections: 9


Intelligence 9 IOCs YARA File information Comments 1
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 78b84e3a6754abc58dffefec630c24d0e050390178b69e3a771a89d99dd78217
SHA3-384 hash: 2b4566dbf25f34b9369667c4aaf0b9b4b75d65b68ba88e229d0a4a3a3b7b5e57acda256802a2c5cbcdf29e31bd18cea2
SHA1 hash: f0830d58c08b8c590a6a9a2cb75fdd5caa8600b2
MD5 hash: beabb547702cbe653edcdf9b74b690f2
humanhash: utah-vegan-twelve-twelve
File name:beabb547702cbe653edcdf9b74b690f2
Download: download sample
Signature Mirai
Create hunting rule
File size:56'220 bytes
First seen:2022-07-03 15:40:42 UTC
Last seen:Never
File type: elf
MIME type:application/x-executable
ssdeep 768:9XPsEmYgdQZJne5pAZJYuDuVxApxNzGH4mSQ68odGSoQLDI:pu5yJYuaVxUNzGYmSj87gLE
TLSH T1A9432ADAF8029D3DF91FE67E54164D0DBA7163C112830B2B67ABFDA3AC721945E02D81
Reporter zbetcheckin
Tags:32 elf mirai motorola

Intelligence

File Origin
# of uploads :
1
# of downloads :
190
Origin country :
n/a
Vendor Threat Intelligence
Detection(s):
SecuriteInfo.com.Linux.Mirai-81.UNOFFICIAL
Create hunting rule

Unix.Dropper.Mirai-7136013-0
Create hunting rule

Unix.Trojan.Mirai-8025795-0
Create hunting rule

Unix.Trojan.Mirai-9441505-0
Create hunting rule

Unix.Trojan.Mirai-9858729-0
Create hunting rule

Unix.Trojan.Mirai-9940650-0
Create hunting rule

Unix.Trojan.Mirai-9941921-0
Create hunting rule

Unix.Trojan.Mirai-9950762-0
Create hunting rule

Verdict:
Likely Malicious
Threat level:
  7.5/10
Confidence:
100%
Tags:
anti-debug
Link:
https://www.filescan.io/uploads/62c1b89511764e36f80fa93c/reports/b826a544-f4a8-41fa-a566-b591a0fa268a/overview
Result
Verdict:
MALICIOUS
Malware family:
Mirai
Create hunting rule
Verdict:
Malicious
Link:
https://analyze.intezer.com/analyses/dc3e38e9-7d6f-4079-9a76-68459e0d881d
Result
Threat name:
Mirai
Create hunting rule
Detection:
malicious
Classification:
troj
Score:
56 / 100
Link:
https://www.joesandbox.com/analysis/1023698
Signature
Multi AV Scanner detection for submitted file
Yara detected Mirai
Behaviour
Behavior Graph:
Download SVG
Detection:
mirai
Create hunting rule
Link:
https://mwdb.cert.pl/sample/78b84e3a6754abc58dffefec630c24d0e050390178b69e3a771a89d99dd78217/
Threat name:
Linux.Trojan.Mirai
Create hunting rule
Status:
Malicious
First seen:
2022-07-03 15:41:07 UTC
File Type:
ELF32 Big (Exe)
AV detection:
19 of 26 (73.08%)
Threat level:
  5/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=pc4e4othksv4ldp757wggdbe2dqfaoibpc3j4otxdke5thoxqilq._file
Result
Malware family:
mirai
Create hunting rule
Score:
  10/10
Tags:
family:mirai linux
Link:
https://tria.ge/reports/220703-s4rershge8/
Please note that we are no longer able to provide a coverage score for Virus Total.

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

Mirai

elf 78b84e3a6754abc58dffefec630c24d0e050390178b69e3a771a89d99dd78217

(this sample)

  
Delivery method
Distributed via web download

Comments


Avatar
zbet commented on 2022-07-03 15:40:43 UTC

url : hxxp://62.197.136.92/shitnet/irc.m68k