SYMBOL | COMMON_NAME | aka. SYNONYMS |
Mirai is one of the first significant botnets targeting exposed networking devices running Linux. Found in August 2016 by MalwareMustDie, its name means "future" in Japanese. Nowadays it targets a wide range of networked embedded devices such as IP cameras, home routers (many vendors involved), and other IoT devices. Since the source code was published on "Hack Forums" many variants of the Mirai family appeared, infecting mostly home networks all around the world.
2024-07-09
⋅
Spamhaus
⋅
Spamhaus Botnet Threat Update January to June 2024 Coper FluBot Hook Bashlite Mirai FAKEUPDATES AsyncRAT BianLian Cobalt Strike DCRat Havoc NjRAT QakBot Quasar RAT RedLine Stealer Remcos Rhadamanthys RisePro Sliver |
2024-03-18
⋅
XLab
⋅
Mirai Nomi: A Botnet Leveraging DGA Mirai |
2023-09-07
⋅
Deform
⋅
The Infamous Mirai Trojan Evolves: New “Pandora” Variant Targets Android TVs Mirai |
2022-10-20
⋅
Fortinet
⋅
Mirai, RAR1Ransom, and GuardMiner – Multiple Malware Campaigns Target VMware Vulnerability Mirai |
2022-06-11
⋅
Twitter (@MsftSecIntel)
⋅
Tweet on DEV-0401, DEV-0234 exploiting Confluence RCE CVE-2022-26134 Kinsing Mirai Cobalt Strike Lilac Typhoon |
2022-05-20
⋅
Palo Alto Networks Unit 42
⋅
Threat Brief: VMware Vulnerabilities Exploited in the Wild (CVE-2022-22954 and Others) Bashlite Mirai PerlBot |
2022-05-20
⋅
CrowdStrike
⋅
Mirai Malware Variants for Linux Double Down on Stronger Chips in Q1 2022 Mirai |
2022-05-16
⋅
RiskIQ
⋅
RiskIQ: Storm Clauds - New C2 Over DNS Mimics CloudFront Mirai |
2022-05-12
⋅
Lacework Labs
⋅
Malware targeting latest F5 vulnerability Mirai |
2022-04-15
⋅
Center for Internet Security
⋅
Top 10 Malware March 2022 Mirai Shlayer Agent Tesla Ghost RAT Nanocore RAT SectopRAT solarmarker Zeus |
2022-04-15
⋅
Trustwave
⋅
Tough Times for Ukrainian Honeypot? Mirai |
2022-04-08
⋅
The Hacker News
⋅
Hackers Exploiting Spring4Shell Vulnerability to Deploy Mirai Botnet Malware Mirai |
2022-04-08
⋅
Trend Micro
⋅
CVE-2022-22965: Analyzing the Exploitation of Spring4Shell Vulnerability in Weaponizing and Executing the Mirai Botnet Malware Mirai |
2022-04-01
⋅
360 netlab
⋅
What Our Honeypot Sees Just One Day After The Spring4Shell Advisory Mirai |
2022-04-01
⋅
Fortinet
⋅
Fresh TOTOLINK Vulnerabilities Picked Up by Beastmode Mirai Campaign Mirai |
2022-03-15
⋅
JPCERT/CC
⋅
Anti-UPX Unpacking Technique Mirai |
2022-02-25
⋅
SOCRadar
⋅
What You Need to Know About Russian Cyber Escalation in Ukraine Mirai HermeticWiper |
2022-02-25
⋅
360 netlab
⋅
Some details of the DDoS attacks targeting Ukraine and Russia in recent days Bashlite Mirai MooBot PerlBot |
2022-02-25
⋅
⋅
360 netlab
⋅
Details of the DDoS attacks we have seen recently against Ukraine and Russia Bashlite Mirai Mirai |
2022-02-24
⋅
Tesorion
⋅
Report OSINT: Russia/ Ukraine Conflict Cyberaspect Mirai VPNFilter BlackEnergy EternalPetya HermeticWiper Industroyer WhisperGate |
2022-02-20
⋅
Cado Security
⋅
Technical Analysis of the DDoS Attacks against Ukrainian Websites Mirai |
2022-02-18
⋅
⋅
Cert-UA
⋅
Information on cyberattacks 15 February 2022 Mirai |
2022-02-16
⋅
NetScout
⋅
DDoS Attack Campaign Targeting Multiple Organizations in Ukraine Mirai |
2022-01-13
⋅
CrowdStrike
⋅
Linux-Targeted Malware Increases by 35% in 2021: XorDDoS, Mirai and Mozi Most Prevalent Mirai Mozi XOR DDoS |
2022-01-04
⋅
forensicitguy
⋅
Extracting Indicators from a Packed Mirai Sample Mirai |
2021-12-15
⋅
Zscaler
⋅
ThreatLabz analysis - Log4Shell CVE-2021-44228 Exploit Attempts Kinsing Mirai |
2021-12-14
⋅
Medium s2wlab
⋅
Logs of Log4shell (CVE-2021-44228): log4j is ubiquitous Kinsing Mirai Tsunami |
2021-12-13
⋅
Cado Security
⋅
Analysis of Initial In The Wild Attacks Exploiting Log4Shell/Log4J/CVE-2021-44228 Kinsing Mirai Tsunami |
2021-09-30
⋅
lacework
⋅
Mirai goes Stealth – TLS & IoT Malware Mirai VPNFilter |
2021-09-28
⋅
Netlab
⋅
Mirai_ptea_Rimasuta variant is exploiting a new RUIJIE router 0 day to spread Mirai |
2021-09-18
⋅
Microsoft
⋅
Hunting for OMI Vulnerability Exploitation with Azure Sentinel Mirai |
2021-09-07
⋅
CUJOAI
⋅
Threat Alert: Mirai/Gafgyt Fork with New DDoS Modules Discovered Bashlite Mirai |
2021-08-30
⋅
Palo Alto Networks Unit 42
⋅
New Mirai Variant Targets WebSVN Command Injection Vulnerability (CVE-2021-32305) Mirai |
2021-08-24
⋅
Radware
⋅
Dark.IoT Botnet Realtek AP-Router SDK Vulnerability CVE-2021-35395 Dark Mirai |
2021-08-22
⋅
YouTube (Uriel Kosayev)
⋅
Malware Analysis - Mirai Botnet Huawei Exploit Mirai |
2021-07-01
⋅
360 netlab
⋅
Mirai_ptea Botnet is Exploiting Undisclosed KGUARD DVR Vulnerability Mirai |
2021-06-30
⋅
synthesis.to blog
⋅
Automation in Reverse Engineering: String Decryption Mirai |
2021-06-24
⋅
Fortinet
⋅
The Ghosts of Mirai Mirai |
2021-06-14
⋅
AlienVault
⋅
Malware hosting domain Cyberium fanning out Mirai variants Mirai |
2021-05-17
⋅
Uptycs
⋅
Discovery of Simps Botnet Leads To Ties to Keksec Group Bashlite Mirai |
2021-04-15
⋅
Uptycs
⋅
Mirai code re-use in Gafgyt Bashlite Mirai |
2021-03-21
⋅
Blackberry
⋅
2021 Threat Report Bashlite FritzFrog IPStorm Mirai Tsunami elf.wellmess AppleJeus Dacls EvilQuest Manuscrypt Astaroth BazarBackdoor Cerber Cobalt Strike Emotet FinFisher RAT Kwampirs MimiKatz NjRAT Ryuk SmokeLoader TrickBot |
2021-03-15
⋅
Palo Alto Networks Unit 42
⋅
New Mirai Variant Targeting New IoT Vulnerabilities, Including in Network Security Devices Mirai |
2020-12-03
⋅
360 netlab
⋅
Another LILIN DVR 0-day being used to spread Mirai Mirai |
2020-10-20
⋅
Avira
⋅
Katana: a new variant of the Mirai botnet Mirai |
2020-10-14
⋅
Palo Alto Networks Unit 42
⋅
Two New IoT Vulnerabilities Identified with Mirai Payloads Mirai |
2020-09-03
⋅
Palo Alto Networks Unit 42
⋅
Exploits in the Wild for vBulletin Pre-Auth RCE Vulnerability CVE-2020-17496 Mirai PerlBot |
2020-08-03
⋅
IBM
⋅
InfectedNight - Mirai Variant With Massive Attacks On Our Honeypots Mirai |
2020-07-28
⋅
Trend Micro
⋅
Mirai Botnet Exploit Weaponized to Attack IoT Devices via CVE-2020-5902 Mirai |
2020-07-08
⋅
Trend Micro
⋅
New Mirai Variant Expands Arsenal, Exploits CVE-2020-10173 Mirai |
2020-05-14
⋅
paloalto Networks Unit 42
⋅
Mirai and Hoaxcalls Botnets Target Legacy Symantec Web Gateways Bashlite Mirai |
2020-03-19
⋅
Palo Alto Networks Unit 42
⋅
New Mirai Variant Targets Zyxel Network-Attached Storage Devices Mirai |
2020-02-24
⋅
The MalwareMustDie Blog
⋅
MMD-0066-2020 - Linux/Mirai-Fbot - A re-emerged IoT threat FBot Mirai |
2019-12-13
⋅
Palo Alto Networks Unit 42
⋅
Mirai Variant ECHOBOT Resurfaces with 13 Previously Unexploited Vulnerabilities Echobot Mirai |
2019-10-02
⋅
Politie NL
⋅
Servers botnet offline Mirai |
2019-09-10
⋅
ReversingLabs
⋅
Mirai Botnet Continues to Plague IoT Space Mirai |
2019-06-06
⋅
Palo Alto Networks Unit 42
⋅
New Mirai Variant Adds 8 New Exploits, Targets Additional IoT Devices Echobot Mirai |
2019-04-12
⋅
Stratosphere Lab
⋅
Analysis of an IRC based Botnet Mirai |
2019-04-08
⋅
Palo Alto Networks Unit 42
⋅
Mirai Compiled for New Processors Surfaces in the Wild Mirai |
2019-03-18
⋅
Palo Alto Networks Unit 42
⋅
New Mirai Variant Targets Enterprise Wireless Presentation & Display Systems Mirai |
2018-12-20
⋅
Trend Micro
⋅
With Mirai Comes Miori: IoT Botnet Delivered via ThinkPHP Remote Code Execution Exploit Mirai |
2018-09-09
⋅
Palo Alto Networks Unit 42
⋅
Multi-exploit IoT/Linux Botnets Mirai and Gafgyt Target Apache Struts, SonicWall Bashlite Mirai |
2018-07-20
⋅
Palo Alto Networks Unit 42
⋅
Unit 42 Finds New Mirai and Gafgyt IoT/Linux Botnet Campaigns Hakai Mirai |
2017-12-13
⋅
KrebsOnSecurity
⋅
Mirai IoT Botnet Co-Authors Plead Guilty Mirai |
2017-11-24
⋅
Bleeping Computer
⋅
Mirai Activity Picks up Once More After Publication of PoC Exploit Code Mirai |
2017-07-15
⋅
Github (jgamblin)
⋅
Mirai BotNet Source Code Mirai |
2016-10-27
⋅
Simon Roses Femerling Blog
⋅
Mirai DDoS Botnet: Source Code & Binary Analysis Mirai |
2016-10-01
⋅
KrebsOnSecurity
⋅
Source Code for IoT Botnet ‘Mirai’ Released Mirai |
2016-05-02
⋅
John Bambenek
⋅
OSINT Feed Mirai Banjori |