kaiten | 5f4a5f8c6ef02f76b5d21981c4093294ec243535dfe1142a807fa5623a6c6576 | Triage

Submit
Reports

Overview

overview

Static

static

f2e6dbc30a...a9.elf

debian-9-armhf

8

Sharing

General

Target

f2e6dbc30a20ad25240e11aaabc888a9.elf
Size

125KB
Sample

230326-ggayqaff55
MD5

f2e6dbc30a20ad25240e11aaabc888a9
SHA1

12bb7d3b39242633ff703b09c4ebd171b2f40205
SHA256

5f4a5f8c6ef02f76b5d21981c4093294ec243535dfe1142a807fa5623a6c6576
SHA512

21c2868335d07f2193831b86dbc2963ff1d85d18e106fc9326ad7b9f4c8fc52742a77de2cecf242fd61acca311e8fb8b38b2981b69cfd084298fab1047f3f2df
SSDEEP

3072:YvGS3Lu/zHaId0+43lV5kokeqbOI6ZNmy2QyESuunz:YBi/LaK0+MkneqbOIumy2QyE3unz

Score

10^/10

kaiten

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

f2e6dbc30a20ad25240e11aaabc888a9.elf

Resource

debian9-armhf-en-20211208

debian-9-armhf

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  f2e6dbc30a20ad25240e11aaabc888a9.elf
- Size
  
  125KB
- MD5
  
  f2e6dbc30a20ad25240e11aaabc888a9
- SHA1
  
  12bb7d3b39242633ff703b09c4ebd171b2f40205
- SHA256
  
  5f4a5f8c6ef02f76b5d21981c4093294ec243535dfe1142a807fa5623a6c6576
- SHA512
  
  21c2868335d07f2193831b86dbc2963ff1d85d18e106fc9326ad7b9f4c8fc52742a77de2cecf242fd61acca311e8fb8b38b2981b69cfd084298fab1047f3f2df
- SSDEEP
  
  3072:YvGS3Lu/zHaId0+43lV5kokeqbOI6ZNmy2QyESuunz:YBi/LaK0+MkneqbOIumy2QyE3unz
Score

8^/10
- Modifies hosts file
  Adds to hosts file used for mapping hosts to IP addresses.
- Writes DNS configuration
  Writes data to DNS resolver config file.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Dynamic Resolution

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy