Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

afb83827f6...b7.elf

debian-9-mipsel

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    afb83827f6b02cc9f8af865df1872e17d9af1d8d0a19d5a414fa5d670805beb7.elf

  • Size

    5.6MB

  • Sample

    240418-b85phsha7t

  • MD5

    9e935100c7c15c560443064221733921

  • SHA1

    8fcbd6d97792e33a094f2ccaecd320a502c8f83e

  • SHA256

    afb83827f6b02cc9f8af865df1872e17d9af1d8d0a19d5a414fa5d670805beb7

  • SHA512

    43b1573d802c4276cd2ac5c91b8ac74d5d8805a72d9acdf66302a8e12cf10634430848d315f9bb55850ff2c7983039dc00b1781371109987ee605f63e6045378

  • SSDEEP

    98304:yC91hAFxvW6WGVqq7g3JDCg76dAuE8iW5ay5mIOX+aaNcc8pNkxXkz8xBs3K4HUM:yC91hAFxvW6WGVqq7g3JDCg76dAuE8i7

Score
10/10
kaijipersistence

Malware Config

Targets

    • Target

      afb83827f6b02cc9f8af865df1872e17d9af1d8d0a19d5a414fa5d670805beb7.elf

    • Size

      5.6MB

    • MD5

      9e935100c7c15c560443064221733921

    • SHA1

      8fcbd6d97792e33a094f2ccaecd320a502c8f83e

    • SHA256

      afb83827f6b02cc9f8af865df1872e17d9af1d8d0a19d5a414fa5d670805beb7

    • SHA512

      43b1573d802c4276cd2ac5c91b8ac74d5d8805a72d9acdf66302a8e12cf10634430848d315f9bb55850ff2c7983039dc00b1781371109987ee605f63e6045378

    • SSDEEP

      98304:yC91hAFxvW6WGVqq7g3JDCg76dAuE8iW5ay5mIOX+aaNcc8pNkxXkz8xBs3K4HUM:yC91hAFxvW6WGVqq7g3JDCg76dAuE8i7

    Score
    10/10
    persistence

    • Kaiji

      Kaiji payload

    • kaiji_chaosbot

      Chaos-variant payload

    • Changes its process name

    • Executes dropped EXE

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

      persistence

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Reads CPU attributes

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks