Concrete signature match: Backdoor - Provides unauthorized remote access for Linux platform, family Mirai
This detection identifies a backdoor from the Mirai botnet family, which targets Linux systems. The malware infects devices by exploiting weak or default credentials, enrolling them into a botnet used for launching large-scale Distributed Denial-of-Service (DDoS) attacks. The '!MTB' suffix indicates this was identified through machine learning-based behavioral analysis.
No specific strings found for this threat
4ddd645ca8ed85fc7732cd5d51708f7366e71cb1e74927d12f732dc455d67bd099b9a4b34fe8a5428482f6ab826bd317c3d4b12898cd5f3f7ac947ec04db59625b97b168401a799161726df38c04ae2da1fe54d5034738be08353329eead4d7c7fe9b559e58af2bc4b453a5bcdbdfef0b2d527bdc3416ee801613ac1734baa032110ac3ba62dacb2cef11e45729af627d7d938e58fd120831b17071e250bd990Isolate the affected Linux system from the network immediately. Re-image the device from a known-good source, change all default or weak credentials to strong, unique passwords, and ensure all security patches are applied.