bpfdoor | d97625f7ad46e24fc958b1ab1c2de9591bad0127b204f99d7110fe1c401a9df4 | Triage

Submit
Reports

Overview

overview

Static

static

d97625f7ad...1a9df4

ubuntu-18.04-amd64

Sharing

General

Target

d97625f7ad46e24fc958b1ab1c2de9591bad0127b204f99d7110fe1c401a9df4
Size

32KB
Sample

230731-mmbp4afe6w
MD5

0e33e26094a8cb71837c29e26287edbe
SHA1

ad9232de3297fa7031482d8d9ad198a93f86f25e
SHA256

d97625f7ad46e24fc958b1ab1c2de9591bad0127b204f99d7110fe1c401a9df4
SHA512

6a3f5dba7ae279b83b564088ed981db130a6cfbc285b21121443c77df1afbc23233f19471f82dd525d2849d6802eea7d0a19eca9857e8620a4f1ad16d1883538
SSDEEP

768:JMO9NDv4MFMXrThYxtM6TOvakqDZM1jBybDRSD/fIEa0iFpiq:Rpv4MFMXrThYxtSvmVcjByB0iFg

Score

10^/10

bpfdoor backdoor linux

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

d97625f7ad46e24fc958b1ab1c2de9591bad0127b204f99d7110fe1c401a9df4

Resource

ubuntu1804-amd64-20230621-en

bpfdoor backdoor

ubuntu-18.04-amd64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  d97625f7ad46e24fc958b1ab1c2de9591bad0127b204f99d7110fe1c401a9df4
- Size
  
  32KB
- MD5
  
  0e33e26094a8cb71837c29e26287edbe
- SHA1
  
  ad9232de3297fa7031482d8d9ad198a93f86f25e
- SHA256
  
  d97625f7ad46e24fc958b1ab1c2de9591bad0127b204f99d7110fe1c401a9df4
- SHA512
  
  6a3f5dba7ae279b83b564088ed981db130a6cfbc285b21121443c77df1afbc23233f19471f82dd525d2849d6802eea7d0a19eca9857e8620a4f1ad16d1883538
- SSDEEP
  
  768:JMO9NDv4MFMXrThYxtM6TOvakqDZM1jBybDRSD/fIEa0iFpiq:Rpv4MFMXrThYxtSvmVcjByB0iFg
Score

10^/10

bpfdoor backdoor
- BPFDoor
  BPFDoor is an evasive Linux backdoor attributed to a Chinese threat actor called Red Menshen.
  backdoor bpfdoor
- BPFDoor payload
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

bpfdoorbackdoor

© 2018-2024

Terms | Privacy