General

  • Target

    9ddbf59ca8a745983e0c6cab80038f63710d790cadd8f8ac6ce5c4e95225e8cb.elf

  • Size

    5.6MB

  • Sample

    241028-dkz58swpar

  • MD5

    05060e32f3461271ae96e20c91d85ae9

  • SHA1

    9e6c492a1a4df6be8bed22911918833d173fa574

  • SHA256

    9ddbf59ca8a745983e0c6cab80038f63710d790cadd8f8ac6ce5c4e95225e8cb

  • SHA512

    e25eabeba6579530728eaf82078ca9fc59da1788fd13bcf41c8d622a05ebd5592448991f5d82c493a28737feb6b4de9786c57364cfff9f462e13da597cf19b3b

  • SSDEEP

    49152:H2EpH9kX4nazMqH5Erob6XMv7fn3FuL9idt42uXYfTYetBDa9zrHAMnZHsLFnoeF:WEiAQgMZudhDM

Malware Config

Targets

    • Target

      9ddbf59ca8a745983e0c6cab80038f63710d790cadd8f8ac6ce5c4e95225e8cb.elf

    • Size

      5.6MB

    • MD5

      05060e32f3461271ae96e20c91d85ae9

    • SHA1

      9e6c492a1a4df6be8bed22911918833d173fa574

    • SHA256

      9ddbf59ca8a745983e0c6cab80038f63710d790cadd8f8ac6ce5c4e95225e8cb

    • SHA512

      e25eabeba6579530728eaf82078ca9fc59da1788fd13bcf41c8d622a05ebd5592448991f5d82c493a28737feb6b4de9786c57364cfff9f462e13da597cf19b3b

    • SSDEEP

      49152:H2EpH9kX4nazMqH5Erob6XMv7fn3FuL9idt42uXYfTYetBDa9zrHAMnZHsLFnoeF:WEiAQgMZudhDM

    • Kaiji

      Kaiji payload

    • Kaiji family

    • kaiji_chaosbot

      Chaos-variant payload

    • Executes dropped EXE

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks