gafgyt | 427229e533306e0d3ff7d3e17e16d3ef0709203cbc8e6c3c2b2365112f6a6f0e | Triage

Submit
Reports

Overview

overview

Static

static

427229e533...6a6f0e

linux_amd64

9

Sharing

General

Target

427229e533306e0d3ff7d3e17e16d3ef0709203cbc8e6c3c2b2365112f6a6f0e
Size

115KB
Sample

220624-2ecdzsfeak
MD5

cbaf096c09422df52e64fed5ad431cd4
SHA1

733c5e685c5c4f9ed5be0e70e1d02ebf9bc86ede
SHA256

427229e533306e0d3ff7d3e17e16d3ef0709203cbc8e6c3c2b2365112f6a6f0e
SHA512

cb6523e43e55081d890c592f2d8b70143fb423723df769024207ed77f8bf1858c19131f32738bac178b274d0f3a3ac0ee253f7fca97f961474409d7daed96bd6

Score

10^/10

gafgyt mirai mirai_x86corona discovery linux

Static task

static1

gafgyt mirai mirai_x86corona

Behavioral task

behavioral1

Sample

427229e533306e0d3ff7d3e17e16d3ef0709203cbc8e6c3c2b2365112f6a6f0e

Resource

ubuntu1804-amd64-en-20211208

linux_amd64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  427229e533306e0d3ff7d3e17e16d3ef0709203cbc8e6c3c2b2365112f6a6f0e
- Size
  
  115KB
- MD5
  
  cbaf096c09422df52e64fed5ad431cd4
- SHA1
  
  733c5e685c5c4f9ed5be0e70e1d02ebf9bc86ede
- SHA256
  
  427229e533306e0d3ff7d3e17e16d3ef0709203cbc8e6c3c2b2365112f6a6f0e
- SHA512
  
  cb6523e43e55081d890c592f2d8b70143fb423723df769024207ed77f8bf1858c19131f32738bac178b274d0f3a3ac0ee253f7fca97f961474409d7daed96bd6
Score

9^/10

discovery
- Contacts a large (176141) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

gafgytmiraimirai_x86corona

behavioral1

© 2018-2025

Terms | Privacy