Analysis Overview
SHA256
cdc055e60a275ac6b7309b2d84d1167237b32862b3967b4f2fb7417757596f50
Threat Level: Known bad
The file 6638926565638144.zip was found to be: Known bad.
Malicious Activity Summary
Kaiten family
Identified Kaiten Bot
MITRE ATT&CK
Analysis: static1
Detonation Overview
Reported
2021-09-10 14:40
Signatures
Identified Kaiten Bot
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Kaiten family
Analysis: behavioral3
Detonation Overview
Submitted
2021-09-10 14:40
Reported
2021-09-10 14:40
Platform
debian9-mipsbe
Command Line
Signatures
Processes
./b6f0203ddf24cd04489cbbed24059d84504a2ba904659681ad05b7d2c130d4b5
[./b6f0203ddf24cd04489cbbed24059d84504a2ba904659681ad05b7d2c130d4b5]
Network
Files
Analysis: behavioral1
Detonation Overview
Submitted
2021-09-10 14:40
Reported
2021-09-10 14:40
Platform
ubuntu-amd64
Max time kernel
0s
Max time network
1s
Command Line
Signatures
Processes
./b6f0203ddf24cd04489cbbed24059d84504a2ba904659681ad05b7d2c130d4b5
[./b6f0203ddf24cd04489cbbed24059d84504a2ba904659681ad05b7d2c130d4b5]
Network
| Country | Destination | Domain | Proto |
| US | 1.1.1.1:53 | changelogs.ubuntu.com | udp |
| US | 1.1.1.1:53 | changelogs.ubuntu.com | udp |
| GB | 91.189.88.185:443 | changelogs.ubuntu.com | tcp |
Files
Analysis: behavioral2
Detonation Overview
Submitted
2021-09-10 14:40
Reported
2021-09-10 14:41
Platform
debian9-mipsel