bpfdoor | f47de978da1dbfc5e0f195745e3368d3ceef034e964817c66ba01396a1953d72 | Triage

Submit
Reports

Overview

overview

Static

static

f47de978da...953d72

ubuntu-18.04-amd64

Sharing

General

Target

f47de978da1dbfc5e0f195745e3368d3ceef034e964817c66ba01396a1953d72
Size

30KB
Sample

240410-saya8afa91
MD5

915ca30a12f19152e6ee7fcd595b7b41
SHA1

0e214a3bb9955b9b792d0ef785beee212a26c7fd
SHA256

f47de978da1dbfc5e0f195745e3368d3ceef034e964817c66ba01396a1953d72
SHA512

7d0a8c44e394355ebba40aeafbc9a36634be63ef386c9dc0c69c2af9dea47e611490e8a20415ec7c3aa9d1b5ffe0a9d43e9ab3f93b1b15762ed4b73c79e67377
SSDEEP

384:Jq1PnO447Iu6PJOK8IkVaBSua3xkpVYGjk3MmBMyV4M3mY0iFL6nvIO5xflkYkeD:Jq1bSSoVn02gQMMMy10iFLBq5tD

Score

10^/10

bpfdoor backdoor linux

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

f47de978da1dbfc5e0f195745e3368d3ceef034e964817c66ba01396a1953d72

Resource

ubuntu1804-amd64-20240226-en

bpfdoor backdoor

ubuntu-18.04-amd64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  f47de978da1dbfc5e0f195745e3368d3ceef034e964817c66ba01396a1953d72
- Size
  
  30KB
- MD5
  
  915ca30a12f19152e6ee7fcd595b7b41
- SHA1
  
  0e214a3bb9955b9b792d0ef785beee212a26c7fd
- SHA256
  
  f47de978da1dbfc5e0f195745e3368d3ceef034e964817c66ba01396a1953d72
- SHA512
  
  7d0a8c44e394355ebba40aeafbc9a36634be63ef386c9dc0c69c2af9dea47e611490e8a20415ec7c3aa9d1b5ffe0a9d43e9ab3f93b1b15762ed4b73c79e67377
- SSDEEP
  
  384:Jq1PnO447Iu6PJOK8IkVaBSua3xkpVYGjk3MmBMyV4M3mY0iFL6nvIO5xflkYkeD:Jq1bSSoVn02gQMMMy10iFLBq5tD
Score

10^/10

bpfdoor backdoor
- BPFDoor
  BPFDoor is an evasive Linux backdoor attributed to a Chinese threat actor called Red Menshen.
  backdoor bpfdoor
- BPFDoor payload
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

bpfdoorbackdoor

© 2018-2024

Terms | Privacy