kaiten | 10b7d4146bf9e163af314e479d25c7f564365617d684cb13254b44bde903b8f2 | Triage

Submit
Reports

Overview

overview

Static

static

7

edbf998a45...5f3816

ubuntu-18.04-amd64

Sharing

General

Target

edbf998a45d65e3f00c6788f515f3816
Size

61KB
Sample

231220-vchpnaafd8
MD5

edbf998a45d65e3f00c6788f515f3816
SHA1

79d7015fe0e5b876520e301f4a0d3cb5592e2695
SHA256

10b7d4146bf9e163af314e479d25c7f564365617d684cb13254b44bde903b8f2
SHA512

25e318487fc7e1e88638da34920595502bc31d1266a31dd92b54b71b7a79a1efde03fd4987104cab36090df8d763d9d9c9904bb5912498c96e4d2bcbfa4046c9
SSDEEP

1536:D6+6cHGQriaDfNIjYZv/tlMj4i5OGknouy8ZqWgwyGWUIxqG6:u+J9rNDmjSwj4QUoutUWCJUuA

Score

10^/10

kaiten botnet linux upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

edbf998a45d65e3f00c6788f515f3816

Resource

ubuntu1804-amd64-20231215-en

ubuntu-18.04-amd64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  edbf998a45d65e3f00c6788f515f3816
- Size
  
  61KB
- MD5
  
  edbf998a45d65e3f00c6788f515f3816
- SHA1
  
  79d7015fe0e5b876520e301f4a0d3cb5592e2695
- SHA256
  
  10b7d4146bf9e163af314e479d25c7f564365617d684cb13254b44bde903b8f2
- SHA512
  
  25e318487fc7e1e88638da34920595502bc31d1266a31dd92b54b71b7a79a1efde03fd4987104cab36090df8d763d9d9c9904bb5912498c96e4d2bcbfa4046c9
- SSDEEP
  
  1536:D6+6cHGQriaDfNIjYZv/tlMj4i5OGknouy8ZqWgwyGWUIxqG6:u+J9rNDmjSwj4QUoutUWCJUuA
Score

10^/10

kaiten botnet
- Detects Kaiten/Tsunami Payload
- Detects Kaiten/Tsunami payload
- Kaiten/Tsunami
  Linux-based IoT botnet which is controlled through IRC and normally used to carry out DDoS attacks.
  botnet kaiten
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy