bpfdoor | bd353a28886815f43fe71c561a027fdeff5cd83e17e2055c0e52bea344ae51d3 | Triage

Submit
Reports

Overview

overview

Static

static

bd353a2888...ae51d3

ubuntu-20.04-amd64

Sharing

General

Target

bd353a28886815f43fe71c561a027fdeff5cd83e17e2055c0e52bea344ae51d3
Size

27KB
Sample

240410-q8hx3saa75
MD5

80e6bfeec50096d9b1c222897f43bbea
SHA1

f8715db0f879fa87abf2ff6ac5b2d25fe89ccdda
SHA256

bd353a28886815f43fe71c561a027fdeff5cd83e17e2055c0e52bea344ae51d3
SHA512

45a663b8b4a20843656c28064dd8d6bac5b6ce2485da8a8409bac58f6fb9533588ad37bf3e6e5a84caf37fe6d236e6a07340fd2cee0c346faaea9bd0e8e24d35
SSDEEP

768:B4D/o+FMXrThYxtqZZT3K6bDRSD2PLhys0iFxxgd:c/o+FMXrThYxtWT3K6Ws0iFxxg

Score

10^/10

bpfdoor backdoor linux

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

bd353a28886815f43fe71c561a027fdeff5cd83e17e2055c0e52bea344ae51d3

Resource

ubuntu2004-amd64-20240221-en

bpfdoor backdoor

ubuntu-20.04-amd64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  bd353a28886815f43fe71c561a027fdeff5cd83e17e2055c0e52bea344ae51d3
- Size
  
  27KB
- MD5
  
  80e6bfeec50096d9b1c222897f43bbea
- SHA1
  
  f8715db0f879fa87abf2ff6ac5b2d25fe89ccdda
- SHA256
  
  bd353a28886815f43fe71c561a027fdeff5cd83e17e2055c0e52bea344ae51d3
- SHA512
  
  45a663b8b4a20843656c28064dd8d6bac5b6ce2485da8a8409bac58f6fb9533588ad37bf3e6e5a84caf37fe6d236e6a07340fd2cee0c346faaea9bd0e8e24d35
- SSDEEP
  
  768:B4D/o+FMXrThYxtqZZT3K6bDRSD2PLhys0iFxxgd:c/o+FMXrThYxtWT3K6Ws0iFxxg
Score

10^/10

bpfdoor backdoor
- BPFDoor
  BPFDoor is an evasive Linux backdoor attributed to a Chinese threat actor called Red Menshen.
  backdoor bpfdoor
- BPFDoor payload
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

bpfdoorbackdoor

© 2018-2024

Terms | Privacy