Sample details: 7042bebec84ad289dfd1f5cfd5bc5291 --

Hashes
MD5: 7042bebec84ad289dfd1f5cfd5bc5291
SHA1: 67f9634e14fa0714711777fc204246a6455b6485
SHA256: 0b5f9459a44e3325b711615053e8f83749fb54a3d097aadcef9f14e95fb284cf
SSDEEP: 1536:sUj/6muFbnvUX4+u5QA3jeBRu7pxVxpPt5CFq1VZ:sC/6muFbrySURutXxtbCF4H
Details
File Type: ELF
Yara Hits
YRP/contentis_base64 | YRP/domain | FlorianRoth/Mirai_Botnet_Malware |
Strings
		/lib/ld-uClibc.so.0
libc.so.0
connect
sigemptyset
memmove
getpid
memcpy
readlink
malloc
__udivsi3
recvfrom
socket
select
readdir
sigaddset
accept
calloc
__umodsi3
inet_addr
setsockopt
signal
unlink
sendto
realloc
listen
__aeabi_ldiv0
__uClibc_main
memset
__div0
__aeabi_uidiv
getppid
opendir
getsockopt
__aeabi_uidivmod
__errno_location
__modsi3
__aeabi_idiv0
__data_start
setsid
closedir
sigprocmask
getsockname
_edata
__bss_start
__bss_start__
__bss_end__
__end__
POST /cdn-cgi/
 HTTP/1.1
User-Agent: 
Host: 
Cookie: 
/proc/net/tcp
/dev/watchdog
/dev/misc/watchdog
abcdefghijklmnopqrstuvw012345678
ZOJFKRA
FGDCWNV
HWCLVGAJ
QWRRMPV
RCQQUMPF
QOACFOKL
QWRGPTKQMP
AJCLEGOG
FPGCO@MZ
PGCNVGI
VGNLGV
FCGOML
OGPNKL
MRGPCVMP
CLVQNS
KRACO}PV
MRGLTRLCQ
VNhUR@M
DeSldQ
MGNKLWZ
mZJNUqe
TGPVGZ
CNRKLG
CFOKLKQVPCVMP
cFOKLKQVPCVMP
NGVOGKL
NGVCANC
VQNKLWZ
@KLVGA
cFOKLQVPCVMP
AECFOKL
CFOKLQVPCVMP
Q[QCFO
assword
QUKXXVJGEMF
NKQVGLKLE
uEzAs"
FGNGVGF
CLKOG"
QVCVWQ"
pgrmpv
jvvrdnmmf"
nmnlmevdm"
iknncvvi"
qacllgp"
kldgavkml"
fgqvpm{o{cxx"
iknncnn"
vpkeegpgf"
amllgavgf"
pcleg"
jmmfcqqqjkv"
rjmlg"
lgvkq"
amo`m"
evdmdce"
vgnlgv"
jgnnlcj"
wfrdnmmf"
vardnmmf"
qvfdnmmf"
wlidnmmf"
aladnmmf"
wfrcvvcai"
varcvvcbi"
qvfcvvcai"
wlicvvcai"
alacvvcai"
wfrcvvi"
varcvvi"
qvfcvvi"
wlicvvi"
alacvvi"
lmffmq"
lmfmq"
iknnffmq"
iknnfmq"
lkeegp"
lkeegpq"
rwqq{"
nodcm"
pgrrkle"
qgndpgr"
	QVMR"
	WLILMUL"
@MVIKNN"
QACLLGP"
IKNNFC@MV"
dwaimdd"
`mviknn"
dcqvnmcf"
wrfcvg"
glc`ng"
`}iknn"
r{vjml"
`mviknngp"
qrmmd"
iknnqw`"
vc`ng"
egvnmacnkr"
egvrw`nkakr"
XMNNCPF"
okpck"
gaajk"
QJGNN"
GLC@NG"
Q[QVGO"
@WQ[@MZ
ciwoc"
CRRNGV
DMWLF"
LAMPPGAV"
@WQ[@MZ
@WQ[@MZ
vqMWPAG
gLEKLG
sWGP["
PGQMNT
LCOGQGPTGP
aMLLGAVKML
CNKTG"
cAAGRV
CRRNKACVKML
ZJVON	ZON
CRRNKACVKML
cAAGRV
nCLEWCEG
aMLVGLV
CRRNKACVKML
WPNGLAMFGF"
QGVaMMIKG
PGDPGQJ
NMACVKML
AMMIKG
AMLVGLV
NGLEVJ
VPCLQDGP
GLAMFKLE
AJWLIGF"
AMLLGAVKML
QGPTGP
FMQCPPGQV"
QGPTGP
ANMWFDNCPG
LEKLZ"
oMXKNNC
uKLFMUQ
cRRNGuG@iKV
aJPMOG
qCDCPK
oMXKNNC
uKLFMUQ
cRRNGuG@iKV
aJPMOG
qCDCPK
oMXKNNC
uKLFMUQ
cRRNGuG@iKV
aJPMOG
qCDCPK
oMXKNNC
uKLFMUQ
cRRNGuG@iKV
aJPMOG
qCDCPK
oMXKNNC
oCAKLVMQJ
cRRNGuG@iKV
tGPQKML
qCDCPK
.shstrtab
.interp
.dynsym
.dynstr
.rel.plt
.rodata
.ctors
.dtors
.dynamic