General

  • Target

    linux_mips_softfloat.elf

  • Size

    5.6MB

  • Sample

    250419-xgzj3sszhw

  • MD5

    44e1f27df16a1fa0ba77fc02b7dfd3d9

  • SHA1

    f5dc5f8b677a9d329fa37791e6c9bc8d8eddd418

  • SHA256

    a2da78afe6e176fd8172ac68185457af7643b78ed45713105728014fcc1ad197

  • SHA512

    a3d93f7d50e85844e83cfce4937560335475209997b0b81bb0c4b4230ad3c8ee419776b6cf9247d6c4dcf053de798bc89ecc979e193f2754efa33bb0217bd384

  • SSDEEP

    49152:E0qbSw1zUu72RTScFnsKbyRHzPDPsdYsYEkk/KbYIwkagDbe9zqHKgUQcfG3ZDqt:NqRjm9tgPu

Malware Config

Targets

    • Target

      linux_mips_softfloat.elf

    • Size

      5.6MB

    • MD5

      44e1f27df16a1fa0ba77fc02b7dfd3d9

    • SHA1

      f5dc5f8b677a9d329fa37791e6c9bc8d8eddd418

    • SHA256

      a2da78afe6e176fd8172ac68185457af7643b78ed45713105728014fcc1ad197

    • SHA512

      a3d93f7d50e85844e83cfce4937560335475209997b0b81bb0c4b4230ad3c8ee419776b6cf9247d6c4dcf053de798bc89ecc979e193f2754efa33bb0217bd384

    • SSDEEP

      49152:E0qbSw1zUu72RTScFnsKbyRHzPDPsdYsYEkk/KbYIwkagDbe9zqHKgUQcfG3ZDqt:NqRjm9tgPu

    • Kaiji

      Kaiji payload

    • Kaiji family

    • kaiji_chaosbot

      Chaos-variant payload

    • Executes dropped EXE

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v16

Tasks