kaiten | 1c08aeb0e66f4c0290b950fb9b2438bf4b1a39439a0fcc263ff462b79d32f485 | Triage

Sharing

General

Target

1c08aeb0e66f4c0290b950fb9b2438bf4b1a39439a0fcc263ff462b79d32f485
Size

131KB
Sample

220607-vay9mahadq
MD5

ed322fd423ef9e67db445324138033f7
SHA1

b6c5d67fe5587a6a61bcd1f75e51049707fab7ff
SHA256

1c08aeb0e66f4c0290b950fb9b2438bf4b1a39439a0fcc263ff462b79d32f485
SHA512

f7099e8449f24c6270f02b4d73a79d6a524298e8e031386c9ab8257f670d77cae1a6484948846ee68ef784a15168ab9848026c941f87947e6e1dd18659239b17

Score

10^/10

kaiten linux persistence

Malware Config

Targets

- Target
  
  1c08aeb0e66f4c0290b950fb9b2438bf4b1a39439a0fcc263ff462b79d32f485
- Size
  
  131KB
- MD5
  
  ed322fd423ef9e67db445324138033f7
- SHA1
  
  b6c5d67fe5587a6a61bcd1f75e51049707fab7ff
- SHA256
  
  1c08aeb0e66f4c0290b950fb9b2438bf4b1a39439a0fcc263ff462b79d32f485
- SHA512
  
  f7099e8449f24c6270f02b4d73a79d6a524298e8e031386c9ab8257f670d77cae1a6484948846ee68ef784a15168ab9848026c941f87947e6e1dd18659239b17
Score

7^/10

persistence
- Modifies rc script
  Adding/modifying system rc scripts is a common persistence mechanism.
  persistence
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Privilege Escalation

Boot or Logon Autostart Execution

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1