General

  • Target

    linux_mips_softfloat.elf

  • Size

    5.6MB

  • Sample

    250412-w63scszvez

  • MD5

    539e5473a01f936394c6009eee1b8fd2

  • SHA1

    f1469afedc6293dae3350ba4224d377f98976073

  • SHA256

    d261dd9205389d51a2cb0b495762f3994f18b1dd48af07029a3cbf8e5d41b046

  • SHA512

    d7e650dfb8b4936347a55c8be641ba70bdce7fc4419a99b86803b2596dc13dc0069957a6d45c060ce9a4c7d43f0722ad93af32afc0469c518462b53f2e9ee821

  • SSDEEP

    49152:L3qbSw1zUu72RTScFnsKbyRHzPDPs4coYtJkEk2wBIxWyDp/9zUH+zOukx83ZIqG:jqO0o27gDQ

Malware Config

Targets

    • Target

      linux_mips_softfloat.elf

    • Size

      5.6MB

    • MD5

      539e5473a01f936394c6009eee1b8fd2

    • SHA1

      f1469afedc6293dae3350ba4224d377f98976073

    • SHA256

      d261dd9205389d51a2cb0b495762f3994f18b1dd48af07029a3cbf8e5d41b046

    • SHA512

      d7e650dfb8b4936347a55c8be641ba70bdce7fc4419a99b86803b2596dc13dc0069957a6d45c060ce9a4c7d43f0722ad93af32afc0469c518462b53f2e9ee821

    • SSDEEP

      49152:L3qbSw1zUu72RTScFnsKbyRHzPDPs4coYtJkEk2wBIxWyDp/9zUH+zOukx83ZIqG:jqO0o27gDQ

    • Kaiji

      Kaiji payload

    • Kaiji family

    • kaiji_chaosbot

      Chaos-variant payload

    • Executes dropped EXE

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v16

Tasks