Concrete signature match: Backdoor - Provides unauthorized remote access for Linux platform, family Mirai
This detection identifies a variant of the Mirai botnet malware on a Linux system, likely within the Windows Subsystem for Linux (WSL). The malware acts as a backdoor, allowing attackers to control the system and add it to a botnet used for launching large-scale Distributed Denial of Service (DDoS) attacks.
No detailed analysis available from definition files.
a54e8cc21ed34c00daa66f29310c0e765a894fef9e8b16854abb474837ffdf5d64e7d90377053cfe382d672c279d9b7b5df178102be49bed813d41155bbf36ccabec6d45a6099ecdab39bb8c2e4304f7102319132d3ca8b1f0225d525deb7b8ea28cbd466613185d33f058ddc77459e45b3b85b3113ca0eae16595f849f21aecfe326335c2ceb3918d7dc8cefa1589d85db3747ac91d359ff313d97a5b22cc8eEnsure Defender has quarantined or removed the file. Investigate the affected Linux (WSL) instance for unauthorized processes, persistence mechanisms, and unusual outbound network traffic. Change all credentials and consider resetting the WSL instance after backing up critical data.