gafgyt | 546f0c5340e5676a3bddfb232f8cd0a6d1c72b678d59301317f5f00c75af7416 | Triage

Submit
Reports

Overview

overview

Static

static

546f0c5340...af7416

linux_amd64

9

Sharing

General

Target

546f0c5340e5676a3bddfb232f8cd0a6d1c72b678d59301317f5f00c75af7416
Size

102KB
Sample

220625-b112csbed4
MD5

ca65dae0ca254f7b4bcedea05d22dfe6
SHA1

89b4338611e84b547882428ce3ee3f153220e54c
SHA256

546f0c5340e5676a3bddfb232f8cd0a6d1c72b678d59301317f5f00c75af7416
SHA512

a7221d8c304e4530e4d9623a254dbabc096b3a1fa4d293a2ffc83b981680e9a557bb19d512efe3985a7a6389338aed4cb2ce5cb6201198126fd34fc1d88d976b

Score

10^/10

gafgyt mirai mirai_x86corona discovery linux

Static task

static1

gafgyt mirai mirai_x86corona

Behavioral task

behavioral1

Sample

546f0c5340e5676a3bddfb232f8cd0a6d1c72b678d59301317f5f00c75af7416

Resource

ubuntu1804-amd64-en-20211208

linux_amd64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  546f0c5340e5676a3bddfb232f8cd0a6d1c72b678d59301317f5f00c75af7416
- Size
  
  102KB
- MD5
  
  ca65dae0ca254f7b4bcedea05d22dfe6
- SHA1
  
  89b4338611e84b547882428ce3ee3f153220e54c
- SHA256
  
  546f0c5340e5676a3bddfb232f8cd0a6d1c72b678d59301317f5f00c75af7416
- SHA512
  
  a7221d8c304e4530e4d9623a254dbabc096b3a1fa4d293a2ffc83b981680e9a557bb19d512efe3985a7a6389338aed4cb2ce5cb6201198126fd34fc1d88d976b
Score

9^/10

discovery
- Contacts a large (23519) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

gafgytmiraimirai_x86corona

behavioral1

© 2018-2025

Terms | Privacy