Backdoor

Backdoor.Linux.Mirai.cw (file analysis)

Malware Removal

The Backdoor.Linux.Mirai.cw is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Backdoor.Linux.Mirai.cw virus can do?

  • Injection (inter-process)
  • Injection with CreateRemoteThread in a remote process
  • Uses Windows utilities for basic functionality
  • Network activity detected but not expressed in API logs

How to determine Backdoor.Linux.Mirai.cw?



File Info:

crc32: 2F02526B
md5: ed76de13b1fd6c026bdf469a443f6bb0
name: upload_file
sha1: adc15476365bb3ef9db44d6e9ad6d4d152ec7316
sha256: 851a11f61ccb992224a164535a0cf0e6f4a6220b03995194a648f210da23f3fb
sha512: a4810106611a73be39a16e3c44351074273b829a04f7dac3bf08adc0c38290b29778354006b40b409f7ccaba7ac62c63fc778b86fd369f4a7558f8335e4e7c7d
ssdeep: 1536:Naz1bYtQEUIFrnHo0pWmAsrMQk35kFrUU60a10B:NaBbinVHoCDAhR35kdUUc
type: ELF 32-bit LSB  executable, ARM, version 1, statically linked, stripped


Version Info:

0: [No Data]

Backdoor.Linux.Mirai.cw also known as:

MicroWorld-eScanTrojan.Linux.Mirai.1
FireEyeTrojan.Linux.Mirai.1
McAfeeLinux/Mirai-FECK!ED76DE13B1FD
SymantecTrojan.Gen.NPE
TrendMicro-HouseCallPossible_MIRAI.SMLBO20
AvastELF:Agent-AGS [Trj]
ClamAVUnix.Dropper.Mirai-7135870-0
GDataTrojan.Linux.Mirai.1
KasperskyHEUR:Backdoor.Linux.Mirai.cw
BitDefenderTrojan.Linux.Mirai.1
AegisLabTrojan.Linux.Mirai.K!c
TencentBackdoor.Linux.Mirai.waw
Ad-AwareTrojan.Linux.Mirai.1
EmsisoftTrojan.Linux.Mirai.1 (B)
F-SecureMalware.LINUX/Mirai.tixfp
DrWebLinux.Mirai.1232
TrendMicroPossible_MIRAI.SMLBO20
SophosMal/Generic-S
IkarusTrojan.Linux.Mirai
AviraLINUX/Mirai.tixfp
Antiy-AVLTrojan[Backdoor]/Linux.Mirai.b
ArcabitTrojan.Linux.Mirai.1
ZoneAlarmHEUR:Backdoor.Linux.Mirai.cw
Avast-MobileELF:Agent-AGS [Trj]
AhnLab-V3Linux/Mirai.Gen18
ALYacTrojan.Linux.Mirai.1
ESET-NOD32a variant of Linux/Mirai.ATO
RisingBackdoor.Mirai!8.E05B (TFE:14:Fk1sksVMrDT)
MAXmalware (ai score=84)
FortinetELF/Mirai.AT!tr
BitDefenderThetaGen:NN.Mirai.34144
AVGELF:Agent-AGS [Trj]
Qihoo-360Linux/Backdoor.6f4

How to remove Backdoor.Linux.Mirai.cw?

Backdoor.Linux.Mirai.cw removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment