Pulse Detail — Threat Intelligence

PULSE NAME

Mirai.TBOT Uncovered: Over 100 Groups and 30,000+ Infected Hosts in a big IoT Botnet

WHITE AlienVault 2024-01-08 Modified: 2024-02-07

178

IOCs

HIGH VOLUME

Mirai was first discovered in 2016 and it infects IoT devices by exploiting their weak passwords and vulnerabilities. Once the devices are infected, they become part of a botnet controlled by attackers for large-scale distributed denial-of-service attacks. Mirai botnets usually classify bots into different groups. Recently a discovered Mirai botnet actually had more than 100 Bot groups

MITRE ATT&CK & Malware Families

ATT&CK TECHNIQUES

T1583.005

Indicators of Compromise (178)

All domain FileHash-SHA1 CVE FileHash-SHA256

TYPE	INDICATOR	DESCRIPTION	CREATED
domain	sdfsd.xyz	—	2024-01-08
domain	ftpget.sh	—	2024-01-08
domain	getcred.uk	—	2024-01-08
domain	idfdfh.xyz	—	2024-01-08
domain	husd8uasd9.online	—	2024-01-08
domain	shetoldmeshewas12.uno	—	2024-01-08
domain	fuckmy.site	—	2024-01-08
domain	asdjjasdhioasdia.online	—	2024-01-08
domain	fuckmy.website	—	2024-01-08
domain	skid.uno	—	2024-01-08
domain	infectedchink.online	—	2024-01-08
domain	curl.sh	—	2024-01-08
domain	fuckmy.store	—	2024-01-08
domain	infectedchink.cat	—	2024-01-08
domain	pqahzam.ink	—	2024-01-08
domain	jxhfn.xyz	—	2024-01-08
domain	dogeatingchink.uno	—	2024-01-08
domain	cooldockmantoo.men	—	2024-01-08
domain	wget.sh	—	2024-01-08
domain	hbdfblf.xyz	—	2024-01-08
domain	iliveona.cloud	—	2024-01-08
domain	cjfop.xyz	—	2024-01-08
domain	homehitter.tk	—	2024-01-08
FileHash-SHA1	64ad0ec7f3db48f30cbe50cffb54bee2152e94f5	—	2024-01-08
FileHash-SHA1	8be6b6235c00b4b27d621a363a8f2cd054380754	—	2024-01-08
FileHash-SHA1	b01181913e74ed6bc0acec23153dd6f11092bf59	—	2024-01-08
FileHash-SHA1	15fa96b125549fc2eb26be31706661ca77382f21	—	2024-01-08
FileHash-SHA1	7c57de7f8c046a3ced1e2e079dc387209ef97caa	—	2024-01-08
FileHash-SHA1	bb15b13b7e4aa69712c9dcf2a73055e6313e6aee	—	2024-01-08
FileHash-SHA1	16d058958e2732e95e3fadc8769a7e8209b889d4	—	2024-01-08
FileHash-SHA1	15f11531ce67e0808a0ec0fcf7c190d47b6bc90c	—	2024-01-08
FileHash-SHA1	03232683b5e07a1fa8324817d3e4ede9f4bf7143	—	2024-01-08
FileHash-SHA1	a1dc8a403843257968c911d43df082d625e12197	—	2024-01-08
FileHash-SHA1	7895f6776b00faedacdf1eb285b71188a317f95d	—	2024-01-08
FileHash-SHA1	2e9e8c9f4f5ddb78f9e534bda89b2df9f8e008ee	—	2024-01-08
FileHash-SHA1	45522e25416cb928e27d52f7ac69c8fb05bfc150	—	2024-01-08
FileHash-SHA1	f99a15ac07a30841e00da3638e6f9e5abcda3d87	—	2024-01-08
FileHash-SHA1	bea0a2e1706bbc85fc9ada411d58ae2cef371bed	—	2024-01-08
FileHash-SHA1	6cd655a688e375ec0f409ee28f8cf8eb52da220f	—	2024-01-08
FileHash-SHA1	2cd7df6fabb55278bbd7486f7942ca272f2ad59f	—	2024-01-08
FileHash-SHA1	c0e15d727273baa8863e84778b10f338698353ea	—	2024-01-08
FileHash-SHA1	4459fe9886077fc83327e299cbdfb4fa64252aba	—	2024-01-08
FileHash-SHA1	3caaba1488799b87a4fb81f0d174b04710489488	—	2024-01-08
FileHash-SHA1	62e05eaf7d985aa42ba164f3f16db71933eca814	—	2024-01-08
FileHash-SHA1	451d1aea75753617b8294719862f32864eb04d41	—	2024-01-08
FileHash-SHA1	b4da7b9c1322f900e07f43c524e4e4fca6b3f944	—	2024-01-08
FileHash-SHA1	e47986ea6fb79353a60d4d2a5d6c8808a8f6ceda	—	2024-01-08
FileHash-SHA1	8cf75e300cdfc01292af6c76567d87c5fd4090d0	—	2024-01-08
FileHash-SHA1	7c963d64df9476fe58e07d0c4af97c7a463428db	—	2024-01-08
FileHash-SHA1	95c188ef4360b7bf5a0603af99e0ffe8b3e54141	—	2024-01-08
FileHash-SHA1	15af666429156e7fbdfe1fb449e058cb4d7837f1	—	2024-01-08
FileHash-SHA1	3fb804fff6b5adfb77944ce9ce7ca619b788e385	—	2024-01-08
FileHash-SHA1	0d02585b5ea7757e4c37394493a3a589d1a5d9f7	—	2024-01-08
FileHash-SHA1	a1e6c0502cb31af03cd07a8fc1dd70fe11f6791a	—	2024-01-08
FileHash-SHA1	a34d429af4a69b8bfaddb4182949c889244dd0d2	—	2024-01-08
FileHash-SHA1	63096ff0b4ee4beeb019da754be93c599bf383fb	—	2024-01-08
FileHash-SHA1	c9b5d0a1888d4d64a95a845acb8d23950a81366f	—	2024-01-08
FileHash-SHA1	c35e3043c03cb2a569fd53792c78c98a74112f6d	—	2024-01-08
FileHash-SHA1	330b964d9a548d28b29060853cbe05982866381b	—	2024-01-08
FileHash-SHA1	0e23eb76564f7f98b03c9dd135d5b5ca7a6086e1	—	2024-01-08
FileHash-SHA1	4ded376d839bc83528cddce670234701545c3e12	—	2024-01-08
FileHash-SHA1	04fa9edab61b770b4d02236780fd6829f29ab297	—	2024-01-08
FileHash-SHA1	a2e910e6fc27bf32baa619929622251e1cc3adc5	—	2024-01-08
FileHash-SHA1	acd075978f8cd4313beb9d6e6b76984ccc18128c	—	2024-01-08
FileHash-SHA1	725ab9e109ab0791d0311f46918d841aebd49fb8	—	2024-01-08
FileHash-SHA1	ff0a3b62bf80ea8c229ea586500fd05314caa601	—	2024-01-08
FileHash-SHA1	67f8df4dd9cc1734d104a7f9ea9e524998e104ca	—	2024-01-08
FileHash-SHA1	e12fc6a8d4933f59ce480ceafad591d42f0850d0	—	2024-01-08
FileHash-SHA1	fe8f16cc2d82fef0286005e26010946f3937df05	—	2024-01-08
FileHash-SHA1	c932fd391cd758e624345dbbf51afd5f8602ef51	—	2024-01-08
FileHash-SHA1	dbec38b00b4ff6e06cef8f98875e8f8ea4c0f58e	—	2024-01-08
FileHash-SHA1	ff5694ad02c894ab52c6db7dfe1583902840e3ec	—	2024-01-08
FileHash-SHA1	f8452f7e1e2434d6eecbdcc7417faf70e8b78c6f	—	2024-01-08
FileHash-SHA1	18e0e743dcf116e5bc9b734ca88caf75ad97a5df	—	2024-01-08
FileHash-SHA1	789c34af78926f3beeac87ffc56e8f94248c4817	—	2024-01-08
FileHash-SHA1	a22143448003894702dcfc98ff5deb89087ef744	—	2024-01-08
FileHash-SHA1	304ead7c67e187535f8be7d6be59974d400f3dbc	—	2024-01-08
FileHash-SHA1	f325e44db16173a108bd0b110eda61474b23b191	—	2024-01-08
FileHash-SHA1	041ec933c0970bb79685192a80ebf21da33b28ee	—	2024-01-08
FileHash-SHA1	6039dfbe279f0b04053aa76665069ffa5c454da9	—	2024-01-08
FileHash-SHA1	bbd3fc37c4a2003d398f5ddf32a5a238e32d8db5	—	2024-01-08
FileHash-SHA1	d1da613caba4351b88735e7373a6a0dfabd0f9ec	—	2024-01-08
FileHash-SHA1	92a7c24d607b54d7e3fca137d6d7a022df6d78f4	—	2024-01-08
FileHash-SHA1	84292a84c8e35ae832577c3a040419e91d4c0cd4	—	2024-01-08
FileHash-SHA1	02d7f7ca9950cb903c2a4c7e9c0c0dbcac8b6f5a	—	2024-01-08
FileHash-SHA1	bbb43a2ead0b044e902a961ebf5f615e25af917f	—	2024-01-08
FileHash-SHA1	39ac3f23d2adf8fe3dff5f2af81539d10cf46c5f	—	2024-01-08
FileHash-SHA1	2db4de395c18ae39ca0d6d3063ed703e0830d350	—	2024-01-08
FileHash-SHA1	1eb87c1497fa038e3802d18420f7be938c1f3c76	—	2024-01-08
FileHash-SHA1	2b1bb28f58c7ae3f9c50b08409c34208d56ccdba	—	2024-01-08
FileHash-SHA1	0723f347d0d8c5849de5d1e7716b26669c594bfd	—	2024-01-08
FileHash-SHA1	4f0f85d0139b2dd2fcf231abfc5ef2b9bc106833	—	2024-01-08
FileHash-SHA1	103416f7c32edc25bd6ac72f5d384d478df8cd00	—	2024-01-08
FileHash-SHA1	81edfb29f9122c0d6a088af896f073f4ef97c775	—	2024-01-08
FileHash-SHA1	e0f881800581423b68758fccbe35a4f446fd0ea9	—	2024-01-08
FileHash-SHA1	1b8b7ae382e8a263467328323622b78b84c95f73	—	2024-01-08
FileHash-SHA1	50598005db7eca495a25f36c3d56b023863d2b8c	—	2024-01-08
FileHash-SHA1	2079d30b5d337e086653a3d5b8cf0cf2e09dbe06	—	2024-01-08
FileHash-SHA1	d93334e9196d44771dd408d2c6a994bac6f79c83	—	2024-01-08
FileHash-SHA1	a4cc1a3a1c7b8b9170e83012ad18716ad2e5d765	—	2024-01-08
FileHash-SHA1	b7788d47ee97c0df95fe6344bbce747c9e1de23a	—	2024-01-08
FileHash-SHA1	6c2b98781f5215298ff203e80232880866a31ffa	—	2024-01-08
FileHash-SHA1	b993a4e197ecaa1c978086621c6401cfef9f84ee	—	2024-01-08
FileHash-SHA1	35dbb0e69df04311cbd606571b119e8b4564acca	—	2024-01-08
FileHash-SHA1	ee56461c3e104ae8dee99a73d0eb4536ecfec823	—	2024-01-08
FileHash-SHA1	2a958b449cf65eb823f4b04c90f3fc25fa903c2d	—	2024-01-08
FileHash-SHA1	463e4b187f4490886215b16b3473fac8585ac609	—	2024-01-08
FileHash-SHA1	683ef18d9de4070627d0fcd01115648aba11fbef	—	2024-01-08
FileHash-SHA1	0e11b2ec2e208194d6b1ce9d669e6fa8e17fb978	—	2024-01-08
FileHash-SHA1	35292d18a8677e43b9c683c2b3ac69b9929ee854	—	2024-01-08
FileHash-SHA1	f4b7a4176c179add2908a423bad54963c66f6f9c	—	2024-01-08
FileHash-SHA1	2895398531cefb5f7addb527eabe62b5c3342f6c	—	2024-01-08
FileHash-SHA1	1406d71815c13ac2089afd1adab4fb79f58e11b1	—	2024-01-08
FileHash-SHA1	e7aef8cd720c9805206b0640b813729327af63bd	—	2024-01-08
FileHash-SHA1	8ed88ae84aca2733130aafc1e35695fd720ac7a4	—	2024-01-08
FileHash-SHA1	c6d11b9222235a97d51513fba2485b250dca666b	—	2024-01-08
FileHash-SHA1	367dafb8f58e9b15633faf856c96fa1006025740	—	2024-01-08
FileHash-SHA1	693f4266f6a731ad35cab81c7cbfdd08773ff277	—	2024-01-08
FileHash-SHA1	b3de73ad43b20fee8952c3f2d5f60e8facd1ca1a	—	2024-01-08
FileHash-SHA1	c6864fedb4d5d903c8525f852827650e32a6e38d	—	2024-01-08
FileHash-SHA1	35551143ad2aa7507576220ad090d56f6f9f83ad	—	2024-01-08
FileHash-SHA1	cf0eff879211cfa5482786c4040adcd15a04093c	—	2024-01-08
FileHash-SHA1	3a88cd041cb1bce6f29eac68846c1034b9d53126	—	2024-01-08
FileHash-SHA1	6e7f9b8cbca2fa4a7e8bedd1813b88079b7f04bd	—	2024-01-08
FileHash-SHA1	825c78ec177a4ef290004749753b4dc13c58b262	—	2024-01-08
FileHash-SHA1	030288b38c71b7ccd372f6c5c162b0f45846ebbf	—	2024-01-08
FileHash-SHA1	78cf949ca09105325d60d8002fbf7cae06ee0cd0	—	2024-01-08
FileHash-SHA1	d374a39290aa1e5c7350802e911b0e15599c5adb	—	2024-01-08
FileHash-SHA1	704823981cff5b96e7d751b76811cd5ef2027aea	—	2024-01-08
FileHash-SHA1	43f175d5c534a4f5003d67dd69876e87b437bc41	—	2024-01-08
FileHash-SHA1	092f8ea0e7ea6bb201aed3714103967c51b64f2b	—	2024-01-08
FileHash-SHA1	ff4c0f48fd5cb83c529fce90aca929e3b98bb006	—	2024-01-08
FileHash-SHA1	0b5446a8326ad6c885e411314c69003060df7b3a	—	2024-01-08
FileHash-SHA1	f8327b7177101b2564bc85d4c14123789d393fb5	—	2024-01-08
FileHash-SHA1	144972a8bb589c2228d5ccec622fcfadb8889a9e	—	2024-01-08
FileHash-SHA1	b627bbbea5d93ee8cfa0769b74e4f9a8db9fe582	—	2024-01-08
FileHash-SHA1	cafdfd9f7e41e4a1facf44cea3b7bfbfda9c3949	—	2024-01-08
FileHash-SHA1	07b6e105930e3ef997f89e93c9762f11d7dbc8a1	—	2024-01-08
FileHash-SHA1	231bd653715ca8bb9c923f876773974675643286	—	2024-01-08
FileHash-SHA1	3fd867a83dd14a2966fc844656db284801225518	—	2024-01-08
FileHash-SHA1	453a6690624aa1d6bdefce1f534d9cd2763162c7	—	2024-01-08
FileHash-SHA1	aa4157843af4dfa3360193ee4625add37f3080b3	—	2024-01-08
FileHash-SHA1	b92b256b31c92840ab11ebc96f4f9e01343590e6	—	2024-01-08
FileHash-SHA1	e464666300b29868772d016f1b69831f7e5dbf0c	—	2024-01-08
FileHash-SHA1	09894ac1b16b676cc4694dd1214f51ca8e23a19d	—	2024-01-08
FileHash-SHA1	671f2096b4b5e562fb9e085785043a43ffe4147e	—	2024-01-08
FileHash-SHA1	b6986958d5f5357fd0a3f5726be870009cd7f066	—	2024-01-08
FileHash-SHA1	7f20844523cfddf6b1455a10359002d22cfbd885	—	2024-01-08
FileHash-SHA1	e62a20f297c1f786766d887a181b24bc823bcbee	—	2024-01-08
FileHash-SHA1	68e913181e602aefcdab97252171e330d0b1fed8	—	2024-01-08
FileHash-SHA1	8a44661851c1c83863bf3fb60597e26e2dbe67d9	—	2024-01-08
FileHash-SHA1	e3215baeaba3f6c6130c3d3582eca77076b187aa	—	2024-01-08
CVE	CVE-2020-25499	—	2024-01-08
CVE	CVE-2019-19356	—	2024-01-08
CVE	CVE-2021-22205	—	2024-01-08
CVE	CVE-2020-8949	—	2024-01-08
CVE	CVE-2017-17215	—	2024-01-08
CVE	CVE-2022-30525	—	2024-01-08
CVE	CVE-2017-5259	—	2024-01-08
CVE	CVE-2014-8361	—	2024-01-08
CVE	CVE-2016-20016	—	2024-01-08
CVE	CVE-2014-9118	—	2024-01-08
CVE	CVE-2015-2051	—	2024-01-08
CVE	CVE-2023-26801	—	2024-01-08
CVE	CVE-2018-14558	—	2024-01-08
CVE	CVE-2013-3307	—	2024-01-08
CVE	CVE-2018-10561	—	2024-01-08
CVE	CVE-2021-35394	—	2024-01-08
CVE	CVE-2017-18368	—	2024-01-08
CVE	CVE-2020-8515	—	2024-01-08
CVE	CVE-2016-10372	—	2024-01-08
CVE	CVE-2020-9054	—	2024-01-08
CVE	CVE-2018-16752	—	2024-01-08
CVE	CVE-2021-28151	—	2024-01-08
FileHash-SHA256	37c2da63d0c8cef9d219f77e9fa549460e7c45bfeecbe27f9dd349fb030f4fcd	—	2024-01-08
FileHash-SHA256	6cda73857313977d5630687b8453129eb83a03ed3fb7eaf6fee0ddf04f65853a	—	2024-01-08
FileHash-SHA256	5bcfec1f5947a55191835b069db5fa95bc0b9ecb5844c1d5675f0bffa20ec35a	—	2024-01-08
FileHash-SHA256	abad4dd7cb27d17eeb4cf69d97b6ae72ce9fcf5c17a7335bd157e4066a7030fc	—	2024-01-08

References (1)

↗ https://blog.xlab.qianxin.com/mirai-tbot-en/