November 20, 2023
Severity Medium Analysis Summary Agent Tesla is a very popular spyware Trojan built for the.NET framework. Since its initial appearance in 2014, this has been deployed […]
Rewterz Threat Advisory – CVE-2022-2959 – Linux Kernel Vulnerability
August 25, 2022Rewterz Threat Advisory – CVE-2022-20823 – Cisco NX-OS Software Vulnerability
August 25, 2022Rewterz Threat Advisory – CVE-2022-2959 – Linux Kernel Vulnerability
August 25, 2022Rewterz Threat Advisory – CVE-2022-20823 – Cisco NX-OS Software Vulnerability
August 25, 2022
Severity
High
Analysis Summary
A new Mirai variant is making the rounds called mirai_pteamirai. This botnet is one of the significant botnets targeting exposed networking devices running Linux. Mirai means ‘future’ in Japanese. This botnet is one of the active botnet and used to cause DDoS conditions. IP cameras, home routers, and other IoT devices are the common targets of this botnet.
Impact
- Server Outage
- Data Loss
- Website Downtime
Indicators of Compromise
MD5
- cf5c2f0ebd49e0bd3eb87dd0b361e0e3
- f88fcd4c505dfd143a18c8e53db776a2
- 42f86cebac5d813e4705870ad9768323
- 6f3134c16d0368e48556d280707e8864
SHA-256
- 758f4c6703fb3ca79c741ed2be3ad75f7cc9ce07ef04f0fc7910d3b89d752508
- daff7cd46f8623be7f3ee3bca8dfe2643047722818beee259a7f11088793ede2
- 2dd86b6927fc417944161b767e283654b438eba05c0dccac2240013bf468cd53
- 4065b3d41161676bedba45468d6b77677f96f7f16b47bd1624fb287ed86ee919
SHA-1
- 554aeb0d127b6ca54d3d297fc7d43d1755e3fd0d
- a0297e7d71f27d4594bf20c69b7ef13d79b0219a
- 20c3410f786b8a7d5d307d31094f7895728037a0
- 26590a90519661615ecb78cc07e160072541f3ea
Remediation
- Upgrade your operating system.
- Don’t open files and links from unknown sources.
- Install and run anti-virus scans.