← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
IOC - Tracking Mirai Variant Nexcorium: A Vulnerability-Driven IoT Botnet Campaign | FortiGuard Labs
WHITE celestre 2026-04-21 Modified: 2026-05-21
20
IOCs
MEDIUM VOLUME
A list of highlights from FortiGuard Labs’s analysis of the Mirai botnet campaign, which exploited a vulnerability in TBK DVRs to launch large-scale cyber attacks.
脅威リサーチ2026fortiguard labs threat researchfortinetcve201717215ddos attackxhackedbyheaderfortigatefortimailforticlientfortiedrfortiguard webserviceteamnexcoriummirai
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
Nexcorium Mirai
Indicators of Compromise (2 / 20 total)
All CVE FileHash-MD5 FileHash-SHA1 FileHash-SHA256 hostname
TYPEINDICATORDESCRIPTIONCREATED
FileHash-MD5 353874dd1e12a7f67ba4f7ecbcbcb2af MD5 of 696aeb6321313919f0a41a520e6fa715450bbfb271a9add1e54efe16484a9c35 2026-04-21
FileHash-MD5 aaed4dca8bd6bb42fc4efb358a02a554 MD5 of 89dae116c77b0035277d39dfe01043624427c119ddee8883a3ba54a42a6ae400 2026-04-21
References (1)
↗ https://www.fortinet.com/jp/blog/threat-research/tracking-mirai-variant-nexcorium-a-vulnerability-driven-iot-botnet-campaign