Mirai - один из первых значительных ботнетов, нацеленных на открытые сетевые устройства под управлением Linux. Обнаруженный в августе 2016 года MalwareMustDie, его название в переводе с японского означает "будущее". Сегодня он нацелен на широкий спектр сетевых встроенных устройств, таких как IP-камеры, домашние маршрутизаторы (задействованы многие производители) и другие IoT-устройства. С момента публикации исходного кода на "Форумах хакеров" появилось множество вариантов семейства Mirai, заражающих в основном домашние сети по всему миру.
Indicators of Compromise
IPv4
- 1.116.115.169
- 1.246.223.130
- 1.246.223.46
- 103.107.8.193
- 103.107.8.250
- 103.119.112.37
- 103.161.17.233
- 103.161.17.239
- 103.161.174.242
- 103.161.174.5
- 103.166.183.190
- 104.244.79.11
- 104.248.232.242
- 106.246.224.219
- 106.253.47.121
- 107.175.247.196
- 107.182.129.149
- 107.182.129.219
- 107.182.129.226
- 107.182.129.239
- 107.182.129.84
- 107.189.11.231
- 109.206.241.200
- 109.206.241.211
- 109.206.241.219
- 110.45.146.209
- 112.248.80.168
- 112.248.83.129
- 112.95.88.78
- 114.86.230.121
- 115.48.14.130
- 115.50.4.10
- 115.52.18.164
- 115.52.19.110
- 115.55.56.1
- 116.25.224.146
- 116.30.5.121
- 117.193.112.48
- 117.194.154.113
- 117.194.170.142
- 117.195.91.188
- 117.196.25.30
- 117.208.137.90
- 117.212.160.68
- 117.212.161.157
- 117.212.172.91
- 117.214.208.100
- 117.215.209.13
- 117.248.66.89
- 117.253.153.154
- 117.89.12.229
- 118.99.213.105
- 119.123.216.131
- 119.179.236.196
- 119.179.254.216
- 119.18.154.106
- 121.231.107.184
- 121.233.184.223
- 123.10.32.68
- 123.135.236.191
- 123.140.66.111
- 123.4.255.168
- 123.4.89.245
- 123.8.2.136
- 123.9.57.32
- 124.131.155.93
- 124.156.2.226
- 125.41.6.119
- 125.41.73.232
- 125.41.76.21
- 125.43.47.100
- 125.44.51.57
- 129.152.11.208
- 139.162.14.145
- 141.255.161.126
- 141.95.188.153
- 141.98.6.106
- 141.98.6.110
- 141.98.6.211
- 141.98.6.249
- 149.57.201.221
- 151.177.186.119
- 159.89.113.3
- 161.97.118.175
- 163.123.142.131
- 163.123.143.129
- 163.123.143.216
- 163.172.222.185
- 167.114.95.101
- 172.105.203.170
- 172.119.79.239
- 176.221.242.200
- 176.240.18.92
- 176.97.210.135
- 176.97.210.205
- 177.162.79.37
- 178.211.139.135
- 178.235.211.50
- 179.43.156.214
- 181.191.129.232
- 182.116.90.155
- 182.117.68.44
- 182.121.166.225
- 182.126.165.50
- 183.234.0.37
- 185.112.83.86
- 185.150.18.56
- 185.174.136.176
- 185.216.71.116
- 185.216.71.192
- 185.225.73.158
- 185.225.73.78
- 185.225.73.91
- 185.236.228.50
- 185.237.96.86
- 185.252.178.159
- 185.252.178.48
- 185.28.39.60
- 185.44.81.114
- 188.166.89.189
- 188.169.178.50
- 192.9.138.72
- 193.111.248.19
- 193.189.100.122
- 193.233.203.128
- 194.195.117.185
- 194.87.71.134
- 195.178.120.115
- 198.98.49.79
- 198.98.51.203
- 198.98.51.27
- 198.98.52.113
- 199.195.249.225
- 199.195.249.90
- 199.195.253.121
- 20.117.177.147
- 20.187.79.179
- 20.25.153.134
- 200.110.58.211
- 200.150.204.193
- 200.58.89.140
- 200.58.90.139
- 201.150.176.233
- 202.28.229.174
- 205.185.113.157
- 205.185.115.101
- 205.185.119.229
- 205.185.120.212
- 205.185.124.162
- 208.67.104.103
- 208.67.104.31
- 208.67.105.199
- 208.67.106.145
- 208.67.106.206
- 208.67.107.247
- 209.141.40.33
- 209.141.53.78
- 209.141.57.40
- 209.141.59.94
- 212.192.241.113
- 212.192.246.76
- 213.142.151.173
- 213.202.230.64
- 217.195.155.162
- 218.59.127.142
- 220.134.175.75
- 23.254.247.214
- 27.215.84.116
- 31.192.107.237
- 31.7.58.162
- 37.139.129.11
- 37.44.238.187
- 37.49.230.128
- 39.78.194.100
- 39.88.45.4
- 41.139.209.46
- 42.228.66.53
- 42.235.165.224
- 43.155.77.24
- 43.156.35.69
- 45.124.84.194
- 45.124.84.209
- 45.13.227.36
- 45.134.225.20
- 45.137.206.157
- 45.140.188.111
- 45.140.188.40
- 45.153.203.149
- 45.207.9.93
- 45.61.184.119
- 45.95.169.202
- 45.95.55.214
- 45.95.55.225
- 45.95.55.58
- 46.166.185.143
- 46.19.141.122
- 46.23.109.212
- 46.23.109.47
- 46.249.32.102
- 46.249.33.15
- 5.181.80.130
- 5.199.143.110
- 5.252.177.62
- 50.115.170.112
- 51.195.152.23
- 52.231.30.204
- 59.92.173.155
- 59.92.32.199
- 59.92.42.241
- 59.93.25.244
- 61.54.200.153
- 65.108.253.111
- 68.183.117.138
- 75.127.11.211
- 77.126.164.234
- 77.222.52.220
- 77.222.52.77
- 77.222.54.12
- 77.222.60.122
- 77.73.131.122
- 77.73.133.2
- 78.109.53.172
- 78.135.85.160
- 79.110.62.114
- 79.110.62.168
- 79.110.62.20
- 79.110.62.227
- 80.76.51.113
- 80.76.51.224
- 80.76.51.90
- 81.161.229.3
- 81.161.229.46
- 81.17.25.194
- 85.159.4.14
- 85.31.46.211
- 85.31.46.6
- 90.142.40.245
- 91.151.89.220
- 91.218.67.179
- 92.119.159.102
- 92.207.203.157
- 92.87.6.205
- 93.123.16.205
- 94.158.247.111
- 94.255.148.190
- 95.161.131.235
- 95.211.16.242
- 95.214.53.214
- 95.70.156.245
Domains
- beanx99.xyz
- cnc.cyberproperty.us
- dev.snap.tk
- dosbot.in
- dosbot.re
- g10.asadal.net
- goatnet.cf
- ip23.ip-51-195-152.eu
- notabotnet.lol
- payload.krakenbit.net
- remdirectory.com
- rnets.nsad.gay
- scan.fearfulcats.tk
- synns.cf