SYMBOLCOMMON_NAMEaka. SYNONYMS
elf.kaiji (Back to overview)

Kaiji


Surfaced in late April 2020, Intezer describes Kaiji as a DDoS malware written in Go that spreads through SSH brute force attacks. Recovered function names are an English representation of Chinese words, hinting about the origin. The name Kaiji was given by MalwareMustDie based on strings found in samples.

References
2022-09-28LumenBlack Lotus Labs
Chaos Is A Go-Based Swiss Army Knife Of Malware
Chaos Kaiji
2021-09-20IBMIBM SECURITY X-FORCE
2021 IBM SecurityX-Force Cloud Threat Landscape Report
Kaiji Kinsing Tsunami Xanthe XOR DDoS
2020-12-21IntezerIntezer
Top Linux Cloud Threats of 2020
AgeLocker AnchorDNS Blackrota Cloud Snooper Dacls Doki FritzFrog IPStorm Kaiji Kinsing NOTROBIN Penquin Turla PLEAD Prometei RansomEXX Stantinko TeamTNT TSCookie WellMail elf.wellmess TeamTNT
2020-06-22Trend MicroAugusto Remillano II
XORDDoS, Kaiji Botnet Malware Variants Target Exposed Docker Servers
Kaiji XOR DDoS
2020-05-05BitdefenderGraham Cluley
Kaiji – a new strain of IoT malware seizing control and launching DDoS attacks
Kaiji
2020-05-04IntezerPaul Litvak
Kaiji: New Chinese Linux malware turning to Golang
Kaiji

There is no Yara-Signature yet.