General

  • Target

    linux_mips.elf

  • Size

    5.6MB

  • Sample

    241031-3m96navblc

  • MD5

    4fc6fd63cda2d6e00143a264e4139492

  • SHA1

    8bc0d512c13040f90c1f5dfdd597f7c22b20cce6

  • SHA256

    6f4b61e7b4fb7593a028f202cc013ede7846bcb421b4c3c76b2ed4755ae34fee

  • SHA512

    91136f5be79d49243ec9b0c180c9f337ef1f5185e673dd020514697ca147cd3eef32664804b7d27a08067f18f16ae8d70b5a000f98fbe9e22f0cc54dbb5c0fcc

  • SSDEEP

    49152:H2EpH9kX4nazMqH5Erob6XMv7fn3FuL9idt42uXYfTYetBDa9zrHAMnvHsLFnoeF:WEiAQmMZudhDM

Malware Config

Targets

    • Target

      linux_mips.elf

    • Size

      5.6MB

    • MD5

      4fc6fd63cda2d6e00143a264e4139492

    • SHA1

      8bc0d512c13040f90c1f5dfdd597f7c22b20cce6

    • SHA256

      6f4b61e7b4fb7593a028f202cc013ede7846bcb421b4c3c76b2ed4755ae34fee

    • SHA512

      91136f5be79d49243ec9b0c180c9f337ef1f5185e673dd020514697ca147cd3eef32664804b7d27a08067f18f16ae8d70b5a000f98fbe9e22f0cc54dbb5c0fcc

    • SSDEEP

      49152:H2EpH9kX4nazMqH5Erob6XMv7fn3FuL9idt42uXYfTYetBDa9zrHAMnvHsLFnoeF:WEiAQmMZudhDM

    • Kaiji

      Kaiji payload

    • Kaiji family

    • kaiji_chaosbot

      Chaos-variant payload

    • Executes dropped EXE

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks