General

  • Target

    linux_mipsel.elf

  • Size

    5.6MB

  • Sample

    250412-w68zdazvft

  • MD5

    454b31a5e4ab18b95b0e32fa95cd9916

  • SHA1

    8cc9b82cc1524278f9d3ebe0a93a3b43705ae75b

  • SHA256

    655fc0f842fcd43ef69f4dfd80f870b000bb8cf6c120049de6ce4c0ec0205b7d

  • SHA512

    cf3cb51643451179394cee393e1dd83583eb7fd968eb7856cfac94145db5a08a605a953429cc55edefadbb79e60af8350c1d80d784aea1a87339dffbe08ffbac

  • SSDEEP

    98304:yC91hAFxvW6WGVqq7g3JDCg76dAuE8iW5ay5mIOX+aaNcc8pNkxXkz8xBs3K4HUp:yC91hAFxvW6WGVqq7g3JDCg76dAuE8ia

Malware Config

Targets

    • Target

      linux_mipsel.elf

    • Size

      5.6MB

    • MD5

      454b31a5e4ab18b95b0e32fa95cd9916

    • SHA1

      8cc9b82cc1524278f9d3ebe0a93a3b43705ae75b

    • SHA256

      655fc0f842fcd43ef69f4dfd80f870b000bb8cf6c120049de6ce4c0ec0205b7d

    • SHA512

      cf3cb51643451179394cee393e1dd83583eb7fd968eb7856cfac94145db5a08a605a953429cc55edefadbb79e60af8350c1d80d784aea1a87339dffbe08ffbac

    • SSDEEP

      98304:yC91hAFxvW6WGVqq7g3JDCg76dAuE8iW5ay5mIOX+aaNcc8pNkxXkz8xBs3K4HUp:yC91hAFxvW6WGVqq7g3JDCg76dAuE8ia

    • Kaiji

      Kaiji payload

    • Kaiji family

    • kaiji_chaosbot

      Chaos-variant payload

    • Executes dropped EXE

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v16

Tasks