Linux/Mirai-Fbot’s new encryption explained

From blog.malwaremustdie.org

I setup a local brand new ARM base router I bought online around this new year 2020 to replace my old pots, and yesterday, it was soon pwned by malware and I had to reset it to the factory mode to make it work again (never happened before). When the “incident” occurred, the affected router wasn’t dead but it was close to a freeze state, allowing me to operate enough to collect artifacts, and when rebooted that poor little box just won’t start again. So for some reason the infection somehow ruined the router system.

Read more…