General

  • Target

    linux_mips.elf

  • Size

    5.6MB

  • Sample

    250412-w7fn8azjz2

  • MD5

    78d242a560f6f23e7faeb42198f99811

  • SHA1

    d44c796eafa4c4a6a4a398dd56bb32869a37f083

  • SHA256

    f98c0d416cef348b2347184b3d61cfbb002db03a48cfbbbc7a306d32b0067296

  • SHA512

    722da247a00f71a2877fa59d846eeaf1ad59f4ad99b7a3a59203a934872c94312e4627a7a6d1bd7d20751bf967ab0b87f3465f6ff974d2a31a002cc4b50a1412

  • SSDEEP

    49152:H2EpH9kX4nazMqH5Erob6XMv7fn3FuL9idt42uXYfTYetBDa9zrHAMnGHsLFnoeF:WEiAQTMZudhDM

Malware Config

Targets

    • Target

      linux_mips.elf

    • Size

      5.6MB

    • MD5

      78d242a560f6f23e7faeb42198f99811

    • SHA1

      d44c796eafa4c4a6a4a398dd56bb32869a37f083

    • SHA256

      f98c0d416cef348b2347184b3d61cfbb002db03a48cfbbbc7a306d32b0067296

    • SHA512

      722da247a00f71a2877fa59d846eeaf1ad59f4ad99b7a3a59203a934872c94312e4627a7a6d1bd7d20751bf967ab0b87f3465f6ff974d2a31a002cc4b50a1412

    • SSDEEP

      49152:H2EpH9kX4nazMqH5Erob6XMv7fn3FuL9idt42uXYfTYetBDa9zrHAMnGHsLFnoeF:WEiAQTMZudhDM

    • Kaiji

      Kaiji payload

    • Kaiji family

    • kaiji_chaosbot

      Chaos-variant payload

    • Executes dropped EXE

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v16

Tasks