kaiten | ea0fc5ac219c6cd3499af4711b37a783bed4f92b14ac8ac9cbe5dcbdb86b11db | Triage

Submit
Reports

Overview

overview

Static

static

ea0fc5ac21...6b11db

debian-9-armhf

8

Sharing

General

Target

ea0fc5ac219c6cd3499af4711b37a783bed4f92b14ac8ac9cbe5dcbdb86b11db
Size

125KB
Sample

220724-2ncq4sbeen
MD5

e4be5bf4c93ad3484f2e609102a4799b
SHA1

bd10975553b04ee4db9864ac227dcc3cafb49641
SHA256

ea0fc5ac219c6cd3499af4711b37a783bed4f92b14ac8ac9cbe5dcbdb86b11db
SHA512

537780c465e43bff3507867a17e246973ace6e8b9fa4bb30abf7820508f14f734dc4ac0058bd561656e0d0af2f560d0f0a0c712e53482546d8dbd4c3dda3e975

Score

10^/10

kaiten

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

ea0fc5ac219c6cd3499af4711b37a783bed4f92b14ac8ac9cbe5dcbdb86b11db

Resource

debian9-armhf-en-20211208

debian-9-armhf

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  ea0fc5ac219c6cd3499af4711b37a783bed4f92b14ac8ac9cbe5dcbdb86b11db
- Size
  
  125KB
- MD5
  
  e4be5bf4c93ad3484f2e609102a4799b
- SHA1
  
  bd10975553b04ee4db9864ac227dcc3cafb49641
- SHA256
  
  ea0fc5ac219c6cd3499af4711b37a783bed4f92b14ac8ac9cbe5dcbdb86b11db
- SHA512
  
  537780c465e43bff3507867a17e246973ace6e8b9fa4bb30abf7820508f14f734dc4ac0058bd561656e0d0af2f560d0f0a0c712e53482546d8dbd4c3dda3e975
Score

8^/10
- Modifies hosts file
  Adds to hosts file used for mapping hosts to IP addresses.
- Writes DNS configuration
  Writes data to DNS resolver config file.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Dynamic Resolution

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy