Trusted Design

Mirai Botnet Infrastructure

概要

Linux.Mirai is a malware designed to hijack busybox systems in order to perform DDoS attacks. It has been in the news the past few weeks as it is the bot that was used in the DDoS attack on Brian Kreb’s security blog. Mirai is known for the ease with which it can victimize IoT devices. The widespread use of telnet, along with a list of factory default usernames and passwords, result in botnets with sizes that is beyond imagination. The source code for Linux.Mirai bot was released a few weeks ago.

Created: 2026-02-23

Indicators

• hostname - gay.disabled.racing -
• hostname - penis.disabled.racing -
• hostname - report.santasbigcandycane.cx -
• hostname - cnc.disabled.racing -
• hostname - network.santasbigcandycane.cx -
• hostname - dongs.icmp.online -
• hostname - dongs.disabled.racing -
• hostname - lol.disabled.racing -
• hostname - report.icmp.online -
• hostname - kankerc.queryhost.xyz -
• domain - swinginwithme.ru -
• hostname - b0ts.xf0.pw -
• hostname - report.disabled.racing -
• hostname - report.xf0.pw -
• domain - imscaredaf.xyz -
• hostname - meme.icmp.online -
• domain - netwxrk.org -
• hostname - report.queryhost.xyz -

類似Pulses

• Mirai - An internet of things botnet (score: 0.84)
• Investigation of Linux.Mirai Trojan family (score: 0.75)
• Mirai IoT botnet (score: 0.73)
• Mirai Botnet Brute Forcers - Telnet (score: 0.72)
• A new IoT Botnet is Spreading over HTTP 81 on a Large Scale (score: 0.72)

このPulseに関連する脅威アクター (事実ベース)

このPulseに関連する脅威アクター (推論ベース)

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクター グラフ

---

← Pulse一覧に戻る