bpfdoor | b83127fbde5074247b81012553de69604365f7c4c378d8bcb54552c81ea85414 | Triage

Submit
Reports

Overview

overview

Static

static

fe9f3b7451...ked_49

ubuntu-18.04-amd64

Sharing

General

Target

fe9f3b7451913f184e1f53b52a03a981dcea5564633cfcb70d01bd0aec8f30a7_unpacked_49
Size

27KB
Sample

240207-xqcrnsahe9
MD5

75d389d0f987a21bf959ca222844516a
SHA1

ef03b84048193a158ecf1f7033ab0cc8869dd2a5
SHA256

b83127fbde5074247b81012553de69604365f7c4c378d8bcb54552c81ea85414
SHA512

96189c8db80c685b56f41a39ca8c319b6306240f10795e758a9812b2923dcc0d40d01551e7127c1e2c74fc6bfb2a3512ae4856040ff01bedd9fb4f22f5dc50a2
SSDEEP

768:BSD/o+FMXrThYxtXZZTthZbDRSDOfQEd0iFXPRPLd3:O/o+FMXrThYxtjTthZN0iFXPRPh

Score

10^/10

bpfdoor backdoor linux

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

fe9f3b7451913f184e1f53b52a03a981dcea5564633cfcb70d01bd0aec8f30a7_unpacked_49

Resource

ubuntu1804-amd64-20231215-en

bpfdoor backdoor

ubuntu-18.04-amd64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  fe9f3b7451913f184e1f53b52a03a981dcea5564633cfcb70d01bd0aec8f30a7_unpacked_49
- Size
  
  27KB
- MD5
  
  75d389d0f987a21bf959ca222844516a
- SHA1
  
  ef03b84048193a158ecf1f7033ab0cc8869dd2a5
- SHA256
  
  b83127fbde5074247b81012553de69604365f7c4c378d8bcb54552c81ea85414
- SHA512
  
  96189c8db80c685b56f41a39ca8c319b6306240f10795e758a9812b2923dcc0d40d01551e7127c1e2c74fc6bfb2a3512ae4856040ff01bedd9fb4f22f5dc50a2
- SSDEEP
  
  768:BSD/o+FMXrThYxtXZZTthZbDRSDOfQEd0iFXPRPLd3:O/o+FMXrThYxtjTthZN0iFXPRPh
Score

10^/10

bpfdoor backdoor
- BPFDoor
  BPFDoor is an evasive Linux backdoor attributed to a Chinese threat actor called Red Menshen.
  backdoor bpfdoor
- BPFDoor payload
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

bpfdoorbackdoor

© 2018-2024

Terms | Privacy