General

  • Target

    48e91dc804e6d4160b4bf1813c5038d69a406e58c5b66a23b9887f292cf31f92.elf

  • Size

    5.6MB

  • Sample

    241028-cx4thsyang

  • MD5

    f249bcee1a70eb1f2976f89d6d3fc404

  • SHA1

    c0b9f99e41539b0e590677beace22ba284e6a797

  • SHA256

    48e91dc804e6d4160b4bf1813c5038d69a406e58c5b66a23b9887f292cf31f92

  • SHA512

    e0125d37035fb65cce259a39bc8660e102936a0da65873edd44916b438c52e2fc19040922bc05a1fb47c52a3fecd6d1196a19740993c97de297430c60783630c

  • SSDEEP

    49152:L3qbSw1zUu72RTScFnsKbyRHzPDPs4coYtJkEk2wBIxWyDp/9zUH+zOuNx83ZIqG:jqO0o2KgDQ

Malware Config

Targets

    • Target

      48e91dc804e6d4160b4bf1813c5038d69a406e58c5b66a23b9887f292cf31f92.elf

    • Size

      5.6MB

    • MD5

      f249bcee1a70eb1f2976f89d6d3fc404

    • SHA1

      c0b9f99e41539b0e590677beace22ba284e6a797

    • SHA256

      48e91dc804e6d4160b4bf1813c5038d69a406e58c5b66a23b9887f292cf31f92

    • SHA512

      e0125d37035fb65cce259a39bc8660e102936a0da65873edd44916b438c52e2fc19040922bc05a1fb47c52a3fecd6d1196a19740993c97de297430c60783630c

    • SSDEEP

      49152:L3qbSw1zUu72RTScFnsKbyRHzPDPs4coYtJkEk2wBIxWyDp/9zUH+zOuNx83ZIqG:jqO0o2KgDQ

    • Kaiji

      Kaiji payload

    • Kaiji family

    • kaiji_chaosbot

      Chaos-variant payload

    • Executes dropped EXE

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks