gafgyt | 3170c7729ad85754af948b2ecbc2c93aca8d094605867bf186632615ce5e575d | Triage

Submit
Reports

Overview

overview

Static

static

3170c7729a...5e575d

linux_amd64

9

Sharing

General

Target

3170c7729ad85754af948b2ecbc2c93aca8d094605867bf186632615ce5e575d
Size

119KB
Sample

220620-2pc39scdbp
MD5

d94e7cdb97616e14fb0cb323450fa3fa
SHA1

0095eaa0aa070abbe5fcf0dfbe0aeb4b8cecfbac
SHA256

3170c7729ad85754af948b2ecbc2c93aca8d094605867bf186632615ce5e575d
SHA512

ad890ce1dbea1cf8bcea03999461d24eceb32c589afd5bcf92dd980d575db8ac46ad04fdb378f81592c697850c2640f50c0d7254bb1f4be73f8bc10a1997ec31

Score

10^/10

gafgyt mirai mirai_x86corona discovery linux

Static task

static1

gafgyt mirai mirai_x86corona

Behavioral task

behavioral1

Sample

3170c7729ad85754af948b2ecbc2c93aca8d094605867bf186632615ce5e575d

Resource

ubuntu1804-amd64-en-20211208

linux_amd64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  3170c7729ad85754af948b2ecbc2c93aca8d094605867bf186632615ce5e575d
- Size
  
  119KB
- MD5
  
  d94e7cdb97616e14fb0cb323450fa3fa
- SHA1
  
  0095eaa0aa070abbe5fcf0dfbe0aeb4b8cecfbac
- SHA256
  
  3170c7729ad85754af948b2ecbc2c93aca8d094605867bf186632615ce5e575d
- SHA512
  
  ad890ce1dbea1cf8bcea03999461d24eceb32c589afd5bcf92dd980d575db8ac46ad04fdb378f81592c697850c2640f50c0d7254bb1f4be73f8bc10a1997ec31
Score

9^/10

discovery
- Contacts a large (189928) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

gafgytmiraimirai_x86corona

behavioral1

© 2018-2025

Terms | Privacy