kaiten | 9fdd91cff92bbca0e390e299b0d4c72d2403f952de63e482608dc0a6491dc2cc | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

JaffaCakes...04.exe

windows7-x64

JaffaCakes...04.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_21d4816721fbd032273aa81064842c04
Size

48KB
Sample

250225-b3yc9atjx8
MD5

21d4816721fbd032273aa81064842c04
SHA1

bf60371a6b01e2e9fdd09d3088565b109c7ff797
SHA256

9fdd91cff92bbca0e390e299b0d4c72d2403f952de63e482608dc0a6491dc2cc
SHA512

c9407e53b0ef84afdee3c8ef11b6851c994b550d81fe5c115bc2fed1247462e8128b797f4930cb64fa9884fb0eacec4796ec928663990471edb69274b426f997
SSDEEP

384:yXjbP5+2aCRemYpdFA5WEBSnGD1/OcrE/e0d53Irf2VYWTQtnD6xCZRconr/MtvX:YbPA2aCRe3d2AefeZoY/N0AWwXWb5U2m

Score

10^/10

kaiten botnet discovery

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_21d4816721fbd032273aa81064842c04.exe

Resource

win7-20240903-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_21d4816721fbd032273aa81064842c04.exe

Resource

win10v2004-20250217-en

kaiten botnet discovery

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_21d4816721fbd032273aa81064842c04
- Size
  
  48KB
- MD5
  
  21d4816721fbd032273aa81064842c04
- SHA1
  
  bf60371a6b01e2e9fdd09d3088565b109c7ff797
- SHA256
  
  9fdd91cff92bbca0e390e299b0d4c72d2403f952de63e482608dc0a6491dc2cc
- SHA512
  
  c9407e53b0ef84afdee3c8ef11b6851c994b550d81fe5c115bc2fed1247462e8128b797f4930cb64fa9884fb0eacec4796ec928663990471edb69274b426f997
- SSDEEP
  
  384:yXjbP5+2aCRemYpdFA5WEBSnGD1/OcrE/e0d53Irf2VYWTQtnD6xCZRconr/MtvX:YbPA2aCRe3d2AefeZoY/N0AWwXWb5U2m
Score

10^/10

kaiten botnet discovery
- Detects Kaiten/Tsunami Payload
- Detects Kaiten/Tsunami payload
- Kaiten family
  kaiten
- Kaiten/Tsunami
  Linux-based IoT botnet which is controlled through IRC and normally used to carry out DDoS attacks.
  botnet kaiten
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

kaitenbotnetdiscovery

© 2018-2025

Terms | Privacy