General

  • Target

    2ea79246ca36e0bfd5c1968d4344d2b74e3c230be19867732968d63577084f06.elf

  • Size

    5.6MB

  • Sample

    241101-daqttaxncr

  • MD5

    ad1e0eac7b5a21d48787c13116526ff6

  • SHA1

    cdd1a9a416f8c6ffa4dc70638990376695fafbf0

  • SHA256

    2ea79246ca36e0bfd5c1968d4344d2b74e3c230be19867732968d63577084f06

  • SHA512

    e32c24f20f66e2945eff0fbe0dc17bf9850a22455b4d4f272008cc40587ec57995c53e6ce7c046271c4c33faf5e424d53676590ad5e21d22061c39ba48dd6c4c

  • SSDEEP

    49152:+RxVVRFMTwrupkYzfgh7rxQ2USaU85Jbq1rQcR6VYv0VF1:

Malware Config

Targets

    • Target

      2ea79246ca36e0bfd5c1968d4344d2b74e3c230be19867732968d63577084f06.elf

    • Size

      5.6MB

    • MD5

      ad1e0eac7b5a21d48787c13116526ff6

    • SHA1

      cdd1a9a416f8c6ffa4dc70638990376695fafbf0

    • SHA256

      2ea79246ca36e0bfd5c1968d4344d2b74e3c230be19867732968d63577084f06

    • SHA512

      e32c24f20f66e2945eff0fbe0dc17bf9850a22455b4d4f272008cc40587ec57995c53e6ce7c046271c4c33faf5e424d53676590ad5e21d22061c39ba48dd6c4c

    • SSDEEP

      49152:+RxVVRFMTwrupkYzfgh7rxQ2USaU85Jbq1rQcR6VYv0VF1:

    • Kaiji

      Kaiji payload

    • Kaiji family

    • kaiji_chaosbot

      Chaos-variant payload

    • Executes dropped EXE

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks