Concrete signature match: Backdoor - Provides unauthorized remote access for Linux platform, family Mirai
This threat is a variant of the Mirai botnet malware, which targets Linux-based systems and IoT devices. It functions as a backdoor, allowing the infected device to be controlled remotely and used as part of a botnet for large-scale Distributed Denial-of-Service (DDoS) attacks. The '!MTB' suffix indicates this was identified through machine learning behavioral analysis.
No detailed analysis available from definition files.
f98d91ffadc4795861747a25c41598bc8e835c86434a387afbf9f5559880c60e29bcebcbb5f2306e14951e9037682bebc2ad0492b541be5a547c25d4d551221422b50cd47f0f3fb733e95c2c50152522881d65b43dec696bb46d4dcfe65c0315Isolate the affected device from the network to prevent further communication. Perform a factory reset or re-image the system, then immediately change all default credentials to strong, unique passwords. Ensure the device is fully patched and disable unnecessary services like Telnet.