kaiten | 5c383b1ee8c797d0239dc1f4012f9bf979586099e43b988d7fdba3f0f4f5c7ce | Triage

Submit
Reports

Overview

overview

Static

static

ftp.elf

ubuntu-24.04-amd64

7

Sharing

General

Target

ftp.elf
Size

85KB
Sample

250410-tccyqswlv9
MD5

41620546f82358dc809e5d0071b70147
SHA1

a1d2d033add103d970b499dd1896007a8d8a56ae
SHA256

5c383b1ee8c797d0239dc1f4012f9bf979586099e43b988d7fdba3f0f4f5c7ce
SHA512

06c3d6ce8b880cef0438e7676512062053b435cfa806a52af7cd3e4caf4c1ba8d6ad8bf69531e6eb87c971c1cb354e89979d504938a08d52b5e02ffd7e591cbc
SSDEEP

1536:7mUhyUfT4IKgGTMNzdWBG3VUans/uFOw1LTraOwI0nPwJUkit1O5u1m:7FdvKgG2zd+GF3sTwtTOI0n4JUkiXO5N

Score

10^/10

kaiten linux rootkit

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

ftp.elf

Resource

ubuntu2404-amd64-20250307-en

ubuntu-24.04-amd64

1 signatures

150 seconds

Malware Config

Targets

- Target
  
  ftp.elf
- Size
  
  85KB
- MD5
  
  41620546f82358dc809e5d0071b70147
- SHA1
  
  a1d2d033add103d970b499dd1896007a8d8a56ae
- SHA256
  
  5c383b1ee8c797d0239dc1f4012f9bf979586099e43b988d7fdba3f0f4f5c7ce
- SHA512
  
  06c3d6ce8b880cef0438e7676512062053b435cfa806a52af7cd3e4caf4c1ba8d6ad8bf69531e6eb87c971c1cb354e89979d504938a08d52b5e02ffd7e591cbc
- SSDEEP
  
  1536:7mUhyUfT4IKgGTMNzdWBG3VUans/uFOw1LTraOwI0nPwJUkit1O5u1m:7FdvKgG2zd+GF3sTwtTOI0n4JUkiXO5N
Score

7^/10

rootkit
- Loads a kernel module
  Loads a Linux kernel module, potentially to achieve persistence
  rootkit
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy