Sample details: b9d4060159a2f85a0859a23deba3f0c7 --

Hashes
MD5: b9d4060159a2f85a0859a23deba3f0c7
SHA1: e5be8529c6858de018a1e00c2288a99995d9c0c2
SHA256: 031904f0047092ac8a5ba26a188f33c2df45d55ce0ab8edcf0c47eabd89b0bbc
SSDEEP: 768:37UtOUYWomq9IPMEuLA7y3PQUnGHNSdRyPdcpoyNWamO+hE21vxNUY:LUtOUYWjSIPMhA6PQk+NSdRy8khE0
Details
File Type: ELF
Yara Hits
YRP/contentis_base64 | YRP/domain | FlorianRoth/Mirai_Botnet_Malware |
Strings
		POST /cdn-cgi/
 HTTP/1.1
User-Agent: 
Host: 
Cookie: 
/proc/net/tcp
/dev/watchdog
/dev/misc/watchdog
abcdefghijklmnopqrstuvwxyz0123456789
CFOKLKQVPCVMP
QOACFOKL
OGPNKL
QWRRMPV
FCGOML
VGNLGV
MRGPCVMP
assword
CLVQNS
FGDCWNV
ZOJFKRA
CLVQNS"
RCQQUMPF
QWRGPTKQMP
cFOKLKQVPCVMP
QLKAIGP
QLKAIGP
NKQVGLKLE
uEzAs"
FGNGVGF
CLKOG"
QVCVWQ"
pgrmpv
jvvrdnmmf"
nmnlmevdm"
XMNNCPF"
egvnmacnkr"
QJGNN"
GLC@NG"
Q[QVGO"
@WQ[@MZ
acvqogmu"
acvqogmu
CRRNGV
DMWLF"
LAMPPGAV"
@WQ[@MZ
@WQ[@MZ
vqMWPAG
gLEKLG
sWGP["
PGQMNT
LCOGQGPTGP
aMLLGAVKML
CNKTG"
cAAGRV
CRRNKACVKML
ZJVON	ZON
CRRNKACVKML
cAAGRV
nCLEWCEG
aMLVGLV
CRRNKACVKML
WPNGLAMFGF"
QGVaMMIKG
PGDPGQJ
NMACVKML
AMMIKG
AMLVGLV
NGLEVJ
VPCLQDGP
GLAMFKLE
AJWLIGF"
CNKTG"
AMLLGAVKML
QGPTGP
FMQCPPGQV"
QGPTGP
ANMWFDNCPG
LEKLZ"
oMXKNNC
uKLFMUQ
cRRNGuG@iKV
aJPMOG
qCDCPK
oMXKNNC
uKLFMUQ
cRRNGuG@iKV
aJPMOG
qCDCPK
oMXKNNC
uKLFMUQ
cRRNGuG@iKV
aJPMOG
qCDCPK
oMXKNNC
uKLFMUQ
cRRNGuG@iKV
aJPMOG
qCDCPK
oMXKNNC
oCAKLVMQJ
cRRNGuG@iKV
tGPQKML
qCDCPK
/dev/null
.shstrtab
.rodata
.ctors
.dtors