MB-52ae3bae80776d7305f454b6e979115f30d390e7b056e03be036477a821582da high

Description

File type: elf. Size: 169124 bytes. Tags: elf, Mirai. Reporter: abuse_ch. First seen: 2026-06-13 15:09:56.

• A_Survey_on_The_Mirai_IoT_Botnet_and_Its_Recent_Variants (2)
  web:arxiv.org

  Paras Jha and Josiah White created Mirai , co-founders of Protraf Solutions, which offered mitigation services for DDoS attacks [28]. Mirai has created the basis for many botnets that exist today.

  2026-06-19 01:43 UTC
• jgamblin/Mirai-Source-Code - GitHub
  web:github.com

  Mirai is a malware botnet that infects Internet of Things (IoT) devices using default or weak login credentials. Once infected, these devices are controlled by a command-and-control (CnC) server and can be used to launch DDoS attacks. This repo is a fork of the original leaked source code and includes components such as: The bot (runs on IoT ...

  2026-06-19 01:43 UTC
• PDF Understanding the Mirai Botnet
  web:shhaos.github.io

  These unique datasets enable us to conduct the first comprehensive analysis of Mirai and posit technical and non-technical defenses that may stymie future attacks. We track the outbreak of Mirai and find the botnet infected nearly 65,000 IoT devices in its first 20 hours before reaching a steady state population of 200,000- 300,000 infections.

  2026-06-19 01:43 UTC
• Mirai botnet digest: threat overview, analytics and remediation
  web:socprime.com

  Explore the Mirai Botnet Digest: in-depth threat overview, analytics, and actionable remediation insights to detect and defend against Mirai -based IoT attacks.

  2026-06-19 01:43 UTC
• URLhaus | http://45.153.34.205/iran.mips
  web:urlhaus.abuse.ch

  Payload delivery The table below documents all payloads that URLhaus retrieved from this particular URL.

  2026-06-19 01:43 UTC
• Mirai Botnet Forensic Analysis - Cyber - westoahu.hawaii.edu
  web:westoahu.hawaii.edu

  Practicing proper mitigation techniques and being proactive can help reduce device vulnerabilities, and prevent the creation of more bots and limit the resources botnet operators have. References [1] Cloudflare. (2017, December 14). Inside the Infamous Mirai IoT Botnet: A Retrospective.

  2026-06-19 01:43 UTC
• PDF Malware Detection and Mitigation Techniques: Lessons Learned from Mirai ...
  web:www.jisem-journal.com

  Presenting an in-depth security analysis of Mirai botnet, a malware that affected the availability of banking systems and put in evidence a new form of DDoS attack that works with IoT devices compromised by malware. The methods presented are generic and can be used to mitigate any malware of the same nature.

  2026-06-19 01:43 UTC
• Automated Malware Analysis Report for iran.mips.elf - Generated by Joe ...
  web:www.joesandbox.com

  Tries to connect to HTTP servers, but all servers are down (expired dropper behavior)

  2026-06-19 01:43 UTC
• PDF Mirai Botnet - Quorum Cyber
  web:www.quorumcyber.com

  Mirai initially infected and weaponised devices such as smart cameras and Realtek routers2. The botnet variant was created in a racketeering attempt by the cofounders of Protraf Solutions, an organisation offering DDoS mitigation services.

  2026-06-19 01:43 UTC
• Mirai Malware: 100 Samples, Rising Trend (May 2026)
  web:www.yazoul.net

  The emphasis on .mpsl and .mips variants suggests operators are focusing on exploiting outdated firmware in networking equipment. Defensive recommendation: Immediately block outbound connections from non-essential IoT and embedded devices on ports 23 (Telnet) and 2222 (SSH), which are common Mirai infection vectors.

  2026-06-19 01:43 UTC

Indicators of Compromise (3)

Each indicator is enriched from the IOC database, threat-intel feed corroboration (Threat Hunt) and VirusTotal. Click one to expand.

References (1)

• MalwareBazaar sample page Abuse.ch

  File type: elf. Size: 169124 bytes. Tags: elf, Mirai. Reporter: abuse_ch. First seen: 2026-06-13 15:09:56.

Only Available for Registered Users. Sign in to view.