Botnet
Hajime
First seen: 2016-10 • Status: inactive
Currently Inactive
Hajime was a mysterious botnet that claimed to protect IoT devices by closing security holes. No one knows who made it.
Overview
Hajime was an IoT botnet that claimed to be securing devices by closing vulnerable ports. Its creator's intentions remain unknown.
How It Spreads
- • Telnet brute force
- • P2P propagation
What It Does
- • Closes vulnerable ports
- • Blocks other malware
- • P2P communication
Is your business exposed?
Target Platforms
Linux (IoT)
Detection Tips
- • Monitor for Hajime signatures
- • Watch for port closure
MITRE ATT&CK Techniques
T1110
If You're Infected
- 1.
Update IoT firmware
- 2.
Still remove as unauthorized software
Related Malware
Is your business exposed?
Check if your company data is circulating on the dark web
Free scan • No credit card required