Concrete signature match: Trojan - Appears legitimate but performs malicious actions for Linux platform, family Mirai
This is a concrete detection of Trojan:Linux/Mirai.HAF, a confirmed variant of the notorious Mirai botnet family. This malware targets Linux-based IoT devices, transforming them into bots to launch distributed denial-of-service (DDoS) attacks. The detection leverages machine learning behavioral analysis (!MTB) for high confidence and low false positive risk.
No detailed analysis available from definition files.
03530317daf063147818fbc620998b63efb93d25824745a1e53a2684a66993cfabbaecd4fd4a6005c402147e8f893be0fbffab575bb610d025f4c95c3f0342387adfb3e3ff78d882e128b79e271a7ebfd9042f001aaeafed61ced04ff9bb33faf5ec4a8b5c9b1892fe21f69e4bfe888b99ce817e5ef076c8a9dcd094252c11a605f6463e10119c37a5f73569146cdb1279a1b0dc63722ad7b966a808622faa88Immediately isolate the identified Linux device from the network. Thoroughly scan and remove the detected malware using a robust security solution. Apply all available security patches, disable unnecessary services (e.g., Telnet), change all default credentials, and implement strong, unique passwords for all administrative interfaces to prevent re-infection and secure the device.