Concrete signature match: Trojan - Appears legitimate but performs malicious actions for Linux platform, family Mirai
This is a concrete detection for a trojan from the Mirai malware family, which targets Linux-based systems and IoT devices. The malware infects devices by exploiting weak or default credentials, enrolling them into a botnet used to conduct large-scale Distributed Denial of Service (DDoS) attacks.
No detailed analysis available from definition files.
f884e31a8847ba08ca7ca56207685738019410f76ad3bdcaa6e3f15fcd077e4051ded53ada4aa9512fbd980e2e8f963a747e36c0e882dacb0919ee42c47f13c1c1ef7ba6ac632d417af3b23f525470142b435a0e15130869e6c945ec7171d8620675ca71db315237e815ef3f7f6aa02254b6ca8211f7743b85d80c968b5a52b8c6f3572fb3b09ac52f2412b661cce6e0b3be48ff3831eb9ffac788ea8a149129Quarantine and remove the detected file. Identify the source of the file (e.g., WSL, Docker image, network share) and isolate the associated Linux system or IoT device. Change all default or weak credentials on network-accessible Linux systems and IoT devices and scan them for further compromise.