MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 81a6d5883e0973afd2e0ead16649e5bc7d601bfaf43040719a010f199ba7a3e1. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry

Mirai

Vendor detections: 6

Intelligence 6 IOCs YARA File information Comments

SHA256 hash:	81a6d5883e0973afd2e0ead16649e5bc7d601bfaf43040719a010f199ba7a3e1
SHA3-384 hash:	911183329b25586b4d45b21707a99f799af4a4be0135d57607c90d8b20d2515eefbb03c3083cc0adbaa0496fb070f8d8
SHA1 hash:	580470c2d85f8f1cccd67ed3b5b9ad723859c344
MD5 hash:	117c41308b574989b9c58edd0e969c97
humanhash:	monkey-magazine-arkansas-whiskey
File name:	117c41308b574989b9c58edd0e969c97
Download:	download sample
Signature	Mirai Create hunting rule
File size:	22'132 bytes
First seen:	2021-06-15 20:07:09 UTC
Last seen:	Never
File type:	elf
MIME type:	application/x-executable
ssdeep	384:YAmog4c6L5i4+stIW01vhQIE2TQKMpI8QwxZVFjfPnSbmbhymdGUop5hXW:Ypoh/DxCvhdR4IjWVFbSas3UozJW
TLSH	D2A2D01822CDEA72D170903BE13CC347AADB43BA52FE313E1E18079DA49591AD3BE945
Reporter	zbetcheckin
Tags:	32 arm elf mirai

Intelligence

File Origin

# of uploads :

# of downloads :

188

Origin country :

n/a

Vendor Threat Intelligence

Detection(s):

Unix.Trojan.Mirai-8011183-0

Unix.Trojan.Mirai-8274771-0

Verdict:

Malicious

Uses P2P?:

false

Uses anti-vm?:

false

Architecture:

arm

Packer:

UPX

Botnet:

Number of open files:

Number of processes launched:

Processes remaning?

false

Full report:

https://elfdigest.com/brief/81a6d5883e0973afd2e0ead16649e5bc7d601bfaf43040719a010f199ba7a3e1

Result

Verdict:

UNKNOWN

Malware family:

Mirai

Verdict:

Malicious

Link:

https://analyze.intezer.com/analyses/2e47d6aa-e58e-4964-a4f6-fe241f336b80

Detection:

mirai

Link:

https://mwdb.cert.pl/sample/81a6d5883e0973afd2e0ead16649e5bc7d601bfaf43040719a010f199ba7a3e1/

Threat name:

Linux.Trojan.Mirai

Status:

Malicious

First seen:

2021-06-15 20:08:18 UTC

AV detection:

13 of 29 (44.83%)

Threat level:

5/5

Result

Malware family:

n/a

Score:

1/10

Tags:

linux

Link:

https://tria.ge/reports/210615-ttyanjccxn/

Please note that we are no longer able to provide a coverage score for Virus Total.

Threat name:

Malicious File

Score:

1.00

Link:

https://yomi.yoroi.company/submissions/81a6d5883e0973afd2e0ead16649e5bc7d601bfaf43040719a010f199ba7a3e1

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

Mirai

elf 81a6d5883e0973afd2e0ead16649e5bc7d601bfaf43040719a010f199ba7a3e1

(this sample)

Delivery method

Distributed via web download

URLhaus

https://urlhaus.abuse.ch/url/1369999/

Comments

Login required

You need to login to in order to write a comment. Login with your abuse.ch account.

No comments found for this malware sample