MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 ff83788996f4b60c59075e202827a6bf2345cb0dea1d95a3634899ea7f883f45. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry

Mirai

Vendor detections: 9

Intelligence 9 IOCs YARA File information Comments 1

SHA256 hash:	ff83788996f4b60c59075e202827a6bf2345cb0dea1d95a3634899ea7f883f45
SHA3-384 hash:	ca0509fb2a5e71f874d3c4b7af436b5a3a4b41944b4190c414841bae769ffedef9592527fbeb2f1a5230bbc4130edaf2
SHA1 hash:	740baffb01a7d03f53b4bdc3c539511527ef50d8
MD5 hash:	c1c90fa5655ed387def19a639f39fdcc
humanhash:	golf-early-idaho-stream
File name:	c1c90fa5655ed387def19a639f39fdcc
Download:	download sample
Signature	Mirai Create hunting rule
File size:	129'980 bytes
First seen:	2023-12-24 07:37:19 UTC
Last seen:	Never
File type:	elf
MIME type:	application/x-executable
ssdeep	3072:9pNnHA9Tl86XXxZ9IzidQMQuE+FjCJKF/y4Qs2eTBnbi:Sd3Xh8WfTE0jty4J2eJbi
TLSH	T144C35CC6F802AEAEF84B93B6445F090DB97053C06B63162AE7DB7EA7EC360D46C15D44
Reporter	zbetcheckin
Tags:	32 elf mirai motorola

Intelligence

File Origin

# of uploads :

1

# of downloads :

111

Origin country :

FR

Vendor Threat Intelligence

Detection(s):

Sanesecurity.Malware.29325.LC.Pl.UNOFFICIAL

SecuriteInfo.com.Linux.Mirai-81.UNOFFICIAL

Sanesecurity.Malware.28886.LC.UNOFFICIAL

Sanesecurity.Malware.29524.LC.UNOFFICIAL

Sanesecurity.Malware.28878.LC.UNOFFICIAL

Sanesecurity.Malware.28877.LC.UNOFFICIAL

Unix.Trojan.Mirai-6981989-0

Unix.Trojan.Mirai-7100807-0

Unix.Dropper.Mirai-7135868-0

Unix.Dropper.Mirai-7135891-0

Unix.Dropper.Mirai-7135892-0

Unix.Dropper.Mirai-7136013-0

Unix.Dropper.Mirai-7136034-0

Unix.Dropper.Mirai-7136057-0

Unix.Dropper.Mirai-7540663-0

Unix.Trojan.Gafgyt-7782058-0

Unix.Trojan.Mirai-8025795-0

Unix.Trojan.Mirai-9441505-0

Unix.Trojan.Mirai-9858729-0

Unix.Trojan.Mirai-9940650-0

Unix.Trojan.Mirai-9945193-0

Unix.Trojan.Mirai-9946826-0

Unix.Dropper.Mirai-9977145-0

Unix.Dropper.Mirai-10008433-0

Unix.Trojan.Mirai-10011027-0

Unix.Trojan.Mirai-10011918-0

Unix.Packed.Botnet-6566031-0

Unix.Dropper.Botnet-6566040-0

Verdict:

Malicious

Threat level:

10/10

Confidence:

100%

Tags:

anti-debug botnet lolbin mirai obfuscated remote

Link:

https://www.filescan.io/uploads/6587dfdd439457868c075e7b/reports/a3c8f3d4-fb08-4bd4-8059-eab09a1a69d1/overview

Result

Verdict:

MALICIOUS

Malware family:

Mirai

Verdict:

Malicious

Link:

https://analyze.intezer.com/analyses/b1887c72-8a18-4fa6-bd9c-850eb1bde109

Score:

100%

Verdict:

Malware

File Type:

ELF

Link:

https://malprob.io/report/ff83788996f4b60c59075e202827a6bf2345cb0dea1d95a3634899ea7f883f45

Detection:

n/a

Link:

https://mwdb.cert.pl/sample/ff83788996f4b60c59075e202827a6bf2345cb0dea1d95a3634899ea7f883f45/

Threat name:

Linux.Trojan.Mirai

Status:

Malicious

First seen:

2023-12-24 03:26:35 UTC

File Type:

ELF32 Big (Exe)

AV detection:

19 of 37 (51.35%)

Threat level:

5/5

Detection(s):

Suspicious file

Link:

https://check.spamhaus.org/check/?searchterm=76bxrcmw6s3aywihlyqcqj5gx4rulsyn5iozli3djcm6u74ih5cq._file

Result

Malware family:

mirai

Score:

10/10

Tags:

family:mirai botnet:mirai linux

Link:

https://tria.ge/reports/231224-jgdeysaham/

Please note that we are no longer able to provide a coverage score for Virus Total.

Threat name:

Legit

Score:

0.00

Link:

https://yomi.yoroi.company/submissions/ff83788996f4b60c59075e202827a6bf2345cb0dea1d95a3634899ea7f883f45

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

elf ff83788996f4b60c59075e202827a6bf2345cb0dea1d95a3634899ea7f883f45

(this sample)

Delivery method

Distributed via web download

URLhaus

https://urlhaus.abuse.ch/url/2744130/

Comments

Login required

You need to login to in order to write a comment. Login with your abuse.ch account.

zbet commented on 2023-12-24 07:37:20 UTC

url : hxxp://37.44.238.75/mont/.nekoisdaddy.m68k