General

  • Target

    linux_mips.elf

  • Size

    5.6MB

  • Sample

    241108-lc2m4aypgz

  • MD5

    0e9c845a2bc13ae304f9bbc50fc97c1e

  • SHA1

    c8372c13188cdcf03fc4776245829216d2d9df08

  • SHA256

    bf7d2d6b1bafed56a584666f7a1920d8939232a756999507040606f6cac541f5

  • SHA512

    31a3217cb620885d7fb1c608947fc71f4e0e38accc1f0766917e2bf5b2428bca9192f76da02d7de0953033cb14076300e8229ccb5a3e518fbe2cb71b38f06d71

  • SSDEEP

    49152:H2EpH9kX4nazMqH5Erob6XMv7fn3FuL9idt42uXYfTYetBDa9zrHAMnfHsLFnoeF:WEiAQGMZudhDM

Malware Config

Targets

    • Target

      linux_mips.elf

    • Size

      5.6MB

    • MD5

      0e9c845a2bc13ae304f9bbc50fc97c1e

    • SHA1

      c8372c13188cdcf03fc4776245829216d2d9df08

    • SHA256

      bf7d2d6b1bafed56a584666f7a1920d8939232a756999507040606f6cac541f5

    • SHA512

      31a3217cb620885d7fb1c608947fc71f4e0e38accc1f0766917e2bf5b2428bca9192f76da02d7de0953033cb14076300e8229ccb5a3e518fbe2cb71b38f06d71

    • SSDEEP

      49152:H2EpH9kX4nazMqH5Erob6XMv7fn3FuL9idt42uXYfTYetBDa9zrHAMnfHsLFnoeF:WEiAQGMZudhDM

    • Kaiji

      Kaiji payload

    • Kaiji family

    • kaiji_chaosbot

      Chaos-variant payload

    • Executes dropped EXE

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks