General

  • Target

    linux_mips.elf

  • Size

    5.6MB

  • Sample

    250419-xg1gdas1av

  • MD5

    9477869a6731bfd91146332f1f957315

  • SHA1

    f7a85ad37a1f16e7faf4f886767c7e9a1b09ccc8

  • SHA256

    3bac5c740498962f2e0268fe872b8629302238f9c26dcc0e9ab0d62b8fd5fc54

  • SHA512

    1f2c5ec636f0b86339950c3f6a01938c1d30f13574030aae869d1152a259140c8099486163723fa4585eef4fdacf23692b8a87f40d334d321e5def805564a104

  • SSDEEP

    49152:bzEJH9kX4nazMqH5Erob6XMv7fn3Fh3RiiL4faGD3ukb4h409DkHSkNRZ8FnJe1B:XEfErq+dW

Malware Config

Targets

    • Target

      linux_mips.elf

    • Size

      5.6MB

    • MD5

      9477869a6731bfd91146332f1f957315

    • SHA1

      f7a85ad37a1f16e7faf4f886767c7e9a1b09ccc8

    • SHA256

      3bac5c740498962f2e0268fe872b8629302238f9c26dcc0e9ab0d62b8fd5fc54

    • SHA512

      1f2c5ec636f0b86339950c3f6a01938c1d30f13574030aae869d1152a259140c8099486163723fa4585eef4fdacf23692b8a87f40d334d321e5def805564a104

    • SSDEEP

      49152:bzEJH9kX4nazMqH5Erob6XMv7fn3Fh3RiiL4faGD3ukb4h409DkHSkNRZ8FnJe1B:XEfErq+dW

    • Kaiji

      Kaiji payload

    • Kaiji family

    • kaiji_chaosbot

      Chaos-variant payload

    • Executes dropped EXE

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v16

Tasks