kaiji | 3b196f4c493d6726045a6c38e2c273225b466b7ac2784069627c065b9ee6dd72 | Triage

Submit
Reports

Overview

overview

Static

static

3b196f4c49...72.elf

debian-9-mips

Sharing

General

Target

3b196f4c493d6726045a6c38e2c273225b466b7ac2784069627c065b9ee6dd72.elf
Size

5.6MB
Sample

250217-c82hjaxmdx
MD5

6627ff916808990d9bdfe6dd107e5ef9
SHA1

acfa886e2d84ea24c18c89cdae705c91c9c98b36
SHA256

3b196f4c493d6726045a6c38e2c273225b466b7ac2784069627c065b9ee6dd72
SHA512

5199d0440e701c0d41e5a6b5c4e937cb8a4907defdb5bd35bf6073e5c1a804250452fdaa18f28f99764e05d7e922c89f43fefd2799fb6612dfc347fae5e9050d
SSDEEP

49152:H2EpH9kX4nazMqH5Erob6XMv7fn3FuL9idt42uXYfTYetBDa9zrHAMnNHsLFnoeF:WEiAQkMZudhDM

Score

10^/10

kaiji discovery execution persistence privilege_escalation

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

3b196f4c493d6726045a6c38e2c273225b466b7ac2784069627c065b9ee6dd72.elf

Resource

debian9-mipsbe-20240611-en

kaiji discovery execution persistence privilege_escalation

debian-9-mips

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  3b196f4c493d6726045a6c38e2c273225b466b7ac2784069627c065b9ee6dd72.elf
- Size
  
  5.6MB
- MD5
  
  6627ff916808990d9bdfe6dd107e5ef9
- SHA1
  
  acfa886e2d84ea24c18c89cdae705c91c9c98b36
- SHA256
  
  3b196f4c493d6726045a6c38e2c273225b466b7ac2784069627c065b9ee6dd72
- SHA512
  
  5199d0440e701c0d41e5a6b5c4e937cb8a4907defdb5bd35bf6073e5c1a804250452fdaa18f28f99764e05d7e922c89f43fefd2799fb6612dfc347fae5e9050d
- SSDEEP
  
  49152:H2EpH9kX4nazMqH5Erob6XMv7fn3FuL9idt42uXYfTYetBDa9zrHAMnNHsLFnoeF:WEiAQkMZudhDM
Score

10^/10

kaiji discovery execution persistence privilege_escalation
- Kaiji
  Kaiji payload
- Kaiji family
  kaiji
- kaiji_chaosbot
  Chaos-variant payload
- Executes dropped EXE
- Creates/modifies Cron job
  Cron allows running tasks on a schedule, and is commonly used for malware persistence.
  execution persistence privilege_escalation
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Cron

Persistence

Scheduled Task/Job

Cron

Privilege Escalation

Scheduled Task/Job

Cron

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

kaijidiscoveryexecutionpersistenceprivilege_escalation

© 2018-2025

Terms | Privacy