kaiji | d8b2542e888418c4d2a0121d5422639ddd947ba2ab19f2e09ea71d67bd87b4c8 | Triage

Submit
Reports

Overview

overview

Static

static

d8b2542e88...c8.elf

debian-9-mipsel

Sharing

General

Target

d8b2542e888418c4d2a0121d5422639ddd947ba2ab19f2e09ea71d67bd87b4c8.elf
Size

5.6MB
Sample

250213-hkza6avpfw
MD5

3da678b112cb2b8a0c835ff64bd8504a
SHA1

1de6c50c8575fcb3766532ea978654975d517417
SHA256

d8b2542e888418c4d2a0121d5422639ddd947ba2ab19f2e09ea71d67bd87b4c8
SHA512

2f0940458b9acbf898a57ac7a21ecfc014648deb22f9f7b6465abb42e2bd17f8f33bd264a57f2e4bf1eea4418b6dcca96f6bf4e0ecf606abfbeb50c3a920ae67
SSDEEP

49152:+RxVVRFMTw5upkYzfgh7rxQ2USaU85Jbq1rQcR6VYv0VF1:

Score

10^/10

kaiji discovery execution persistence privilege_escalation

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

d8b2542e888418c4d2a0121d5422639ddd947ba2ab19f2e09ea71d67bd87b4c8.elf

Resource

debian9-mipsel-20240729-en

kaiji discovery execution persistence privilege_escalation

debian-9-mipsel

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  d8b2542e888418c4d2a0121d5422639ddd947ba2ab19f2e09ea71d67bd87b4c8.elf
- Size
  
  5.6MB
- MD5
  
  3da678b112cb2b8a0c835ff64bd8504a
- SHA1
  
  1de6c50c8575fcb3766532ea978654975d517417
- SHA256
  
  d8b2542e888418c4d2a0121d5422639ddd947ba2ab19f2e09ea71d67bd87b4c8
- SHA512
  
  2f0940458b9acbf898a57ac7a21ecfc014648deb22f9f7b6465abb42e2bd17f8f33bd264a57f2e4bf1eea4418b6dcca96f6bf4e0ecf606abfbeb50c3a920ae67
- SSDEEP
  
  49152:+RxVVRFMTw5upkYzfgh7rxQ2USaU85Jbq1rQcR6VYv0VF1:
Score

10^/10

kaiji discovery execution persistence privilege_escalation
- Kaiji
  Kaiji payload
- Kaiji family
  kaiji
- kaiji_chaosbot
  Chaos-variant payload
- Executes dropped EXE
- Creates/modifies Cron job
  Cron allows running tasks on a schedule, and is commonly used for malware persistence.
  execution persistence privilege_escalation
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Cron

Persistence

Scheduled Task/Job

Cron

Privilege Escalation

Scheduled Task/Job

Cron

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

kaijidiscoveryexecutionpersistenceprivilege_escalation

© 2018-2025

Terms | Privacy