kaiji | 4f89975accca176245cdb371fa833d7802b7ff3f3f25acc46f54310bcf453e2e | Triage

Submit
Reports

Overview

overview

Static

static

4f89975acc...2e.elf

debian-9-mipsel

Sharing

General

Target

4f89975accca176245cdb371fa833d7802b7ff3f3f25acc46f54310bcf453e2e.elf
Size

5.6MB
Sample

250217-dlw5zaxqel
MD5

23a78aa9db6055bfb50eaa8b71771cb9
SHA1

2ede9a576b704813165a6e6f534d8005e91c19ed
SHA256

4f89975accca176245cdb371fa833d7802b7ff3f3f25acc46f54310bcf453e2e
SHA512

a47142e6080fd9804af4ec69f22782483d3a7f6b324b08ec270fb7869acd311dd2dbf0cb9b2289f06f82b3b5f6142d55f6397990144f022cbebb66f2a4e971d3
SSDEEP

49152:+RxVVRFMTwJupkYzfgh7rxQ2USaU85Jbq1rQcR6VYv0VF1:

Score

10^/10

kaiji discovery execution persistence privilege_escalation

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

4f89975accca176245cdb371fa833d7802b7ff3f3f25acc46f54310bcf453e2e.elf

Resource

debian9-mipsel-20240611-en

kaiji discovery execution persistence privilege_escalation

debian-9-mipsel

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  4f89975accca176245cdb371fa833d7802b7ff3f3f25acc46f54310bcf453e2e.elf
- Size
  
  5.6MB
- MD5
  
  23a78aa9db6055bfb50eaa8b71771cb9
- SHA1
  
  2ede9a576b704813165a6e6f534d8005e91c19ed
- SHA256
  
  4f89975accca176245cdb371fa833d7802b7ff3f3f25acc46f54310bcf453e2e
- SHA512
  
  a47142e6080fd9804af4ec69f22782483d3a7f6b324b08ec270fb7869acd311dd2dbf0cb9b2289f06f82b3b5f6142d55f6397990144f022cbebb66f2a4e971d3
- SSDEEP
  
  49152:+RxVVRFMTwJupkYzfgh7rxQ2USaU85Jbq1rQcR6VYv0VF1:
Score

10^/10

kaiji discovery execution persistence privilege_escalation
- Kaiji
  Kaiji payload
- Kaiji family
  kaiji
- kaiji_chaosbot
  Chaos-variant payload
- Executes dropped EXE
- Creates/modifies Cron job
  Cron allows running tasks on a schedule, and is commonly used for malware persistence.
  execution persistence privilege_escalation
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Cron

Persistence

Scheduled Task/Job

Cron

Privilege Escalation

Scheduled Task/Job

Cron

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

kaijidiscoveryexecutionpersistenceprivilege_escalation

© 2018-2025

Terms | Privacy