bpfdoor | fe9f3b7451913f184e1f53b52a03a981dcea5564633cfcb70d01bd0aec8f30a7 | Triage

Submit
Reports

Overview

overview

Static

static

fe9f3b7451...8f30a7

ubuntu-18.04-amd64

Sharing

General

Target

fe9f3b7451913f184e1f53b52a03a981dcea5564633cfcb70d01bd0aec8f30a7
Size

27KB
Sample

240410-shkp4afe2t
MD5

de0ead0340d3294de961075acf38ff31
SHA1

df8c9b3b529975f4bbddb9be072d8335885d7dfa
SHA256

fe9f3b7451913f184e1f53b52a03a981dcea5564633cfcb70d01bd0aec8f30a7
SHA512

94f3712cf531b9a8a415531c9f8987b7695456b6ded2b34d75aad7c064eebe7b89799f8efb9d163948b91857ccead74ed26f494f4d9f50d7cb37e37f9fd56dbc
SSDEEP

768:BSD/o+FMXrThYxtXZZTthZbDRSDOfQEd0iF+PRPLd3:O/o+FMXrThYxtjTthZN0iF+PRPh

Score

10^/10

bpfdoor backdoor linux

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

fe9f3b7451913f184e1f53b52a03a981dcea5564633cfcb70d01bd0aec8f30a7

Resource

ubuntu1804-amd64-20240226-en

bpfdoor backdoor

ubuntu-18.04-amd64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  fe9f3b7451913f184e1f53b52a03a981dcea5564633cfcb70d01bd0aec8f30a7
- Size
  
  27KB
- MD5
  
  de0ead0340d3294de961075acf38ff31
- SHA1
  
  df8c9b3b529975f4bbddb9be072d8335885d7dfa
- SHA256
  
  fe9f3b7451913f184e1f53b52a03a981dcea5564633cfcb70d01bd0aec8f30a7
- SHA512
  
  94f3712cf531b9a8a415531c9f8987b7695456b6ded2b34d75aad7c064eebe7b89799f8efb9d163948b91857ccead74ed26f494f4d9f50d7cb37e37f9fd56dbc
- SSDEEP
  
  768:BSD/o+FMXrThYxtXZZTthZbDRSDOfQEd0iF+PRPLd3:O/o+FMXrThYxtjTthZN0iF+PRPh
Score

10^/10

bpfdoor backdoor
- BPFDoor
  BPFDoor is an evasive Linux backdoor attributed to a Chinese threat actor called Red Menshen.
  backdoor bpfdoor
- BPFDoor payload
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

bpfdoorbackdoor

© 2018-2024

Terms | Privacy