Concrete signature match: Backdoor - Provides unauthorized remote access for Linux platform, family Mirai
This threat is a backdoor from the Mirai malware family, which targets Linux systems like IoT devices and servers. The malware incorporates the infected device into a botnet used for launching large-scale Distributed Denial-of-Service (DDoS) attacks. The detection was triggered by a machine learning model based on the file's behavior.
No specific strings found for this threat
e4917f81856f452e4b866e440d0b7b42f3c2b00674a9d5bcaa7c445ed7b585361ad76c837935535dcab64e5b868e154ead29aab26fb6cb415d2a6d3574b61416186fbc5c93697df7604cbdbe840439f8089302279147afa0d4eeb0aecbdc6682dd12f0db36c030808ffb568ba4b92c061c50d5ad4d841c7d6fd706028b8d168137eb76dc244280e4576543afe675f53f4aee62171d89f4e97d7dc47bc0eff3ec1. Isolate the affected Linux device from the network immediately. 2. Identify and remove the malicious file and any associated persistence mechanisms. 3. Change all default or weak credentials to strong, unique passwords and disable unnecessary services like Telnet. 4. Update the device's firmware and software to the latest version.