user@threatcheck.sh ~ threat-analysis
bash
$ analyze-threat Trojan:Linux/Mirai!pz
Trojan:Linux/Mirai!pz - Windows Defender threat signature analysis

Trojan:Linux/Mirai!pz - Windows Defender Threat Analysis

$ cat analysis.txt
=== THREAT ANALYSIS REPORT ===
Threat Name: Trojan:Linux/Mirai!pz
Classification:
Type:Trojan
Platform:Linux
Family:Mirai
Detection Type:Concrete
Known malware family with identified signatures
Suffix:!pz
Packed or compressed to evade detection
Confidence:Very High
False-Positive Risk:Low

Concrete signature match: Trojan - Appears legitimate but performs malicious actions for Linux platform, family Mirai

Summary:

This is a concrete detection for a trojan from the Mirai malware family, which targets Linux-based systems and IoT devices. The malware infects devices by exploiting weak or default credentials, enrolling them into a botnet used to conduct large-scale Distributed Denial of Service (DDoS) attacks.

Severity:
Critical
VDM Static Detection:
No detailed analysis available from definition files.
Known malware which is associated with this threat:
Filename: boatnet.arm7
3886b34a9c980bf5f6d76798fd37506698516e123f22bb756fe6fb12674c4852
01/12/2025
VirusTotalDownload Sample
Filename: boatnet.arm7
ed18c8d78c393b471b4b2c6a842333b4d83133c105067f56cf519d55648f077e
14/11/2025
VirusTotalDownload Sample
Filename: boatnet.arm7
8b1d867b26163b45ec047eb415747dd7ed1104e484cecca4d823b5106e024132
12/11/2025
VirusTotalDownload Sample
Remediation Steps:
Quarantine and remove the detected file. Identify the source of the file (e.g., WSL, Docker image, network share) and isolate the associated Linux system or IoT device. Change all default or weak credentials on network-accessible Linux systems and IoT devices and scan them for further compromise.
=== END REPORT ===
$ reanalyze-threat
This analysis was last updated on 12/11/2025. Do you want to analyze it again?
$ ls available-commands/
→ cd /home
user@threatcheck.sh:~$