kaiten | 938cd2020a8551d57ed522c81a4fca9df0cb22db221381ea0e19f0149ee8100e | Triage

Submit
Reports

Overview

overview

Static

static

1871abcf88...ef.elf

debian-9-mips

8

Sharing

General

Target

1871abcf887bec851214979aa90fc3ef.elf
Size

128KB
Sample

230326-gfqmsaff52
MD5

1871abcf887bec851214979aa90fc3ef
SHA1

d2245ecf8d5388aafbe72e7aec757e050a2d79c8
SHA256

938cd2020a8551d57ed522c81a4fca9df0cb22db221381ea0e19f0149ee8100e
SHA512

b540531bc40dffcaeabcace00d4fdd2f53910ff4bb21f43a65a8c409c9999e32f34746bd5cdbcd145dad609fccc696e7334ac52fa5faf3d055693dd4f6153ab6
SSDEEP

1536:S4FwRwb6fntG/azrdgmZ73YfYXZGEazvuKU4cozTz6GidlV0kHL/2WihdwIo7zyb:yY8TnDH/RhhF4emaeGDmj4Lq/WoleA

Score

10^/10

kaiten

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

1871abcf887bec851214979aa90fc3ef.elf

Resource

debian9-mipsbe-20221111-en

debian-9-mips

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  1871abcf887bec851214979aa90fc3ef.elf
- Size
  
  128KB
- MD5
  
  1871abcf887bec851214979aa90fc3ef
- SHA1
  
  d2245ecf8d5388aafbe72e7aec757e050a2d79c8
- SHA256
  
  938cd2020a8551d57ed522c81a4fca9df0cb22db221381ea0e19f0149ee8100e
- SHA512
  
  b540531bc40dffcaeabcace00d4fdd2f53910ff4bb21f43a65a8c409c9999e32f34746bd5cdbcd145dad609fccc696e7334ac52fa5faf3d055693dd4f6153ab6
- SSDEEP
  
  1536:S4FwRwb6fntG/azrdgmZ73YfYXZGEazvuKU4cozTz6GidlV0kHL/2WihdwIo7zyb:yY8TnDH/RhhF4emaeGDmj4Lq/WoleA
Score

8^/10
- Modifies hosts file
  Adds to hosts file used for mapping hosts to IP addresses.
- Writes DNS configuration
  Writes data to DNS resolver config file.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Dynamic Resolution

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy