Concrete signature match: Trojan - Appears legitimate but performs malicious actions for Linux platform, family Mirai
This threat is a variant of the Mirai botnet trojan, which targets Linux systems to absorb them into a botnet. Infected devices are used to conduct large-scale Distributed Denial of Service (DDoS) attacks. The '!MTB' suffix indicates this was identified by a machine learning model based on its malicious behavior.
No specific strings found for this threat
1a9249100df07b063c3efcf853494ba4b7dcb496fba25ee1b091c16d1d73ca8befcfcee111b69c7c3730d7b429449736beb267277a83635be1a48a8aec6326b9127420243465ddcedcba0e3fd3912520f0d0de0e69c7d04d63dd837efca0c2f38764412ba385530c9ef5648ef546834a0b3147806908c3b494bd49f3c805327658b6a24847ce6f30ecd378768f15999ceec005d5b18ad88bdd66a30af0a0a39dIsolate the affected system from the network. Remove the detected malicious file, change all system passwords to be strong and unique, and apply all pending security patches. Review firewall configurations to restrict access to essential services only.