IOC Report
SecuriteInfo.com.ELF.Mirai-CVD.30330.5069.elf

loading gif

Processes

Path
Cmdline
Malicious
/tmp/SecuriteInfo.com.ELF.Mirai-CVD.30330.5069.elf
/tmp/SecuriteInfo.com.ELF.Mirai-CVD.30330.5069.elf
/tmp/SecuriteInfo.com.ELF.Mirai-CVD.30330.5069.elf
-
/tmp/SecuriteInfo.com.ELF.Mirai-CVD.30330.5069.elf
-

Domains

Name
IP
Malicious
iranistrash.libre
unknown
 malicious

IPs

IP
Domain
Country
Malicious
5.230.122.82
unknown
Germany
malicious
5.230.122.80
unknown
Germany
malicious
5.230.228.47
unknown
Germany
malicious
5.230.228.42
unknown
Germany
malicious
5.230.228.23
unknown
Germany
malicious
5.230.228.44
unknown
Germany
malicious
5.230.229.83
unknown
Germany
malicious
5.230.228.62
unknown
Germany
malicious
194.156.98.15
unknown
Russian Federation
malicious
5.230.171.9
unknown
Germany
5.230.122.81
unknown
Germany
172.217.192.127
unknown
United States
185.248.144.209
unknown
France
5.230.118.247
unknown
Germany
There are 4 hidden IPs, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
7f07e4011000
page execute read
7f07e4015000
page read and write
55e6c4a47000
page read and write
55e6c6a45000
page execute and read and write
7fffd46cd000
page read and write
7f08d9229000
page read and write
7f07e4012000
page read and write
55e6c4a3f000
page read and write
55e6c7e2f000
page read and write
7f08d96ea000
page read and write
7f08d8ba5000
page read and write
7f08d4000000
page read and write
55e6c47bc000
page execute read
7f08d4021000
page read and write
7f08d83a2000
page read and write
55e6c6a5b000
page read and write
7f08d96a5000
page read and write
7f08d8bb3000
page read and write
7fffd47a2000
page execute read
7f08d8e42000
page read and write
7f08d9204000
page read and write
7f08d969d000
page read and write
7f08d9574000
page read and write
There are 13 hidden memdumps, click here to show them.