MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 aebef572d064f2d387e3383fe9127d5ea84d731bac5c7ca9b5f79a459edc9626. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Mirai


Vendor detections: 6


Intelligence 6 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: aebef572d064f2d387e3383fe9127d5ea84d731bac5c7ca9b5f79a459edc9626
SHA3-384 hash: 52084a89abfcf89e5f5dbef34d919e83321c0305e8b7728789ddd83bc9081d1e799b7a8dc2cce8ae4518e337cb908df1
SHA1 hash: 5087ab987bf5e05a62d7b27b52b24f94444d5398
MD5 hash: dae5bcd06c8f2382fdec3576762c9691
humanhash: alanine-robin-oscar-kansas
File name:wife.mips
Download: download sample
Signature Mirai
Create hunting rule
File size:13'893'825 bytes
First seen:2026-05-27 19:52:17 UTC
Last seen:Never
File type: elf
MIME type:application/x-executable
ssdeep 98304:nNOnwSa20aL++91nz+SG43SG7ksqepjzQYlLrz8CjEP:NOnwS30aL++91nz+SG43S4pN9rz8xP
TLSH T149E629136A1CE74ED629213059B1CB986B391C8542D6D467B3A2F318F9F307D4AAECF1
telfhash t15fb0121788e00b48a0d14cc14ec8715142e3ed23182971bfbf760dda4f0e807006e006
gimphash e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Magika elf
Reporter abuse_ch
Tags:elf mirai

Intelligence

File Origin
# of uploads :
1
# of downloads :
44
Origin country :
DE DE
Vendor Threat Intelligence
No detections
Result
Verdict:
Clean
Maliciousness:
Verdict:
Malicious
File Type:
elf.32.be
First seen:
2026-05-27T17:17:00Z UTC
Last seen:
2026-05-28T00:01:00Z UTC
Hits:
~100
Link:
https://opentip.kaspersky.com/aebef572d064f2d387e3383fe9127d5ea84d731bac5c7ca9b5f79a459edc9626/results?tab=lookup
Status:
terminated
Link:
https://sandbox.kunai.rocks/analysis/c090de26-1079-4eb1-9c2a-3ec976bad0f5
Behavior Graph:
Download SVG
%3 guuid=627f71c5-2000-0000-4e72-2d2993090000 pid=2451 /usr/bin/sudo guuid=6c5e27c7-2000-0000-4e72-2d2996090000 pid=2454 /tmp/sample.bin guuid=627f71c5-2000-0000-4e72-2d2993090000 pid=2451->guuid=6c5e27c7-2000-0000-4e72-2d2996090000 pid=2454 execve
Verdict:
Unknown
Link:
https://analyze.intezer.com/analyses/c307ba67-6185-4aed-ab70-d0e3247560cd
Score:
100%
Verdict:
Malware
File Type:
ELF
Link:
https://malprob.io/report/aebef572d064f2d387e3383fe9127d5ea84d731bac5c7ca9b5f79a459edc9626
Detection:
mirai
Create hunting rule
Link:
https://mwdb.cert.pl/sample/aebef572d064f2d387e3383fe9127d5ea84d731bac5c7ca9b5f79a459edc9626/
Threat name:
Linux.Trojan.Generic
Create hunting rule
Status:
Suspicious
First seen:
2026-05-27 19:57:44 UTC
File Type:
ELF32 Big (Exe)
AV detection:
5 of 23 (21.74%)
Threat level:
  5/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=v27pk4wqmtznhb7dha76set5l2ue24y3vrohzknv66nelhw4syta._file
Result
Malware family:
n/a
Score:
  3/10
Tags:
discovery
Link:
https://tria.ge/reports/260527-ylwvesa15t/
Behaviour
Enumerates kernel/hardware configuration
System Network Configuration Discovery
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Suspicious File
Score:
0.30
Link:
https://yomi.yoroi.company/submissions/aebef572d064f2d387e3383fe9127d5ea84d731bac5c7ca9b5f79a459edc9626

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

Mirai

elf aebef572d064f2d387e3383fe9127d5ea84d731bac5c7ca9b5f79a459edc9626

(this sample)

  
URLhaus
https://urlhaus.abuse.ch/url/3854126/
  
Delivery method
Distributed via web download

Comments