kaiten | c7f27cf185dac9e77870c7f53d84091993ed872159b4bffcd2bab7cac25da3b0 | Triage

Submit
Reports

Overview

overview

Static

static

7

ad14082f73...10afb1

debian-9-armhf

Sharing

General

Target

ad14082f73f30eb3c924b3677110afb1
Size

62KB
Sample

231220-nvlqpshhc8
MD5

ad14082f73f30eb3c924b3677110afb1
SHA1

f6ee6acc60439dab4b446bd6269c3525e3277daa
SHA256

c7f27cf185dac9e77870c7f53d84091993ed872159b4bffcd2bab7cac25da3b0
SHA512

9dac25ec117ab7ae4415c0fc16cf320ec07c7247fd332009a5d3ed1d222466a30f86c8074016188927ae12d5d039305e35fc2d7e322e7f48177532a65cbb7de7
SSDEEP

1536:fdoCxk6r6hXBqN9RdSB7LN9orTqobPubGXETiwmMJ:VoUr6LqNbdSdNIdMGXEv

Score

10^/10

kaiten botnet upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ad14082f73f30eb3c924b3677110afb1

Resource

debian9-armhf-20231215-en

debian-9-armhf

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  ad14082f73f30eb3c924b3677110afb1
- Size
  
  62KB
- MD5
  
  ad14082f73f30eb3c924b3677110afb1
- SHA1
  
  f6ee6acc60439dab4b446bd6269c3525e3277daa
- SHA256
  
  c7f27cf185dac9e77870c7f53d84091993ed872159b4bffcd2bab7cac25da3b0
- SHA512
  
  9dac25ec117ab7ae4415c0fc16cf320ec07c7247fd332009a5d3ed1d222466a30f86c8074016188927ae12d5d039305e35fc2d7e322e7f48177532a65cbb7de7
- SSDEEP
  
  1536:fdoCxk6r6hXBqN9RdSB7LN9orTqobPubGXETiwmMJ:VoUr6LqNbdSdNIdMGXEv
Score

10^/10

kaiten botnet
- Detects Kaiten/Tsunami Payload
- Detects Kaiten/Tsunami payload
- Kaiten/Tsunami
  Linux-based IoT botnet which is controlled through IRC and normally used to carry out DDoS attacks.
  botnet kaiten
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy