kaiten | cbd891075905c30abafe23df3ead5ecabd9a0454a5879ab9f2c820e3af32d381 | Triage

Sharing

General

Target

cbd891075905c30abafe23df3ead5ecabd9a0454a5879ab9f2c820e3af32d381
Size

107KB
Sample

220219-gdc9nshdbj
MD5

2e8e9a426ee90ddc742d14c0659003f0
SHA1

43776550a0925a84042d01875827c97012b79023
SHA256

cbd891075905c30abafe23df3ead5ecabd9a0454a5879ab9f2c820e3af32d381
SHA512

d2489db93bc5cc4a976b27b3d1ce40a1eb919f439d0391dea358706cbb04a780482d5eb4ae50b71bd58331686b1c8c058a7c9d3d551757ed874fc6c85ddaeb8f

Score

10^/10

kaiten linux persistence

Malware Config

Targets

- Target
  
  cbd891075905c30abafe23df3ead5ecabd9a0454a5879ab9f2c820e3af32d381
- Size
  
  107KB
- MD5
  
  2e8e9a426ee90ddc742d14c0659003f0
- SHA1
  
  43776550a0925a84042d01875827c97012b79023
- SHA256
  
  cbd891075905c30abafe23df3ead5ecabd9a0454a5879ab9f2c820e3af32d381
- SHA512
  
  d2489db93bc5cc4a976b27b3d1ce40a1eb919f439d0391dea358706cbb04a780482d5eb4ae50b71bd58331686b1c8c058a7c9d3d551757ed874fc6c85ddaeb8f
Score

7^/10

persistence
- Modifies rc script
  Adding/modifying system rc scripts is a common persistence mechanism.
  persistence
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Privilege Escalation

Boot or Logon Autostart Execution

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1