gafgyt | 47bf090919dbc5308950340b63b5e08a451c1082df5b6472d09157e5c542b0f9 | Triage

Submit
Reports

Overview

overview

Static

static

47bf090919...42b0f9

linux_amd64

9

Sharing

General

Target

47bf090919dbc5308950340b63b5e08a451c1082df5b6472d09157e5c542b0f9
Size

111KB
Sample

220625-v1rmgadear
MD5

de4a871376e2b6136632b39fb3df27a1
SHA1

bb3c72e5acc7c128fa481df41d65449efdcb0640
SHA256

47bf090919dbc5308950340b63b5e08a451c1082df5b6472d09157e5c542b0f9
SHA512

9589a5279ec64923376680b54c2b318ed5ff28085749280e976cb2058b8199fc4ebd6ab368fa1b8d35673f6962e53c0de46ecfcc49c0f8ea662b869a36292058

Score

10^/10

gafgyt mirai mirai_x86corona discovery linux

Static task

static1

gafgyt mirai mirai_x86corona

Behavioral task

behavioral1

Sample

47bf090919dbc5308950340b63b5e08a451c1082df5b6472d09157e5c542b0f9

Resource

ubuntu1804-amd64-en-20211208

linux_amd64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  47bf090919dbc5308950340b63b5e08a451c1082df5b6472d09157e5c542b0f9
- Size
  
  111KB
- MD5
  
  de4a871376e2b6136632b39fb3df27a1
- SHA1
  
  bb3c72e5acc7c128fa481df41d65449efdcb0640
- SHA256
  
  47bf090919dbc5308950340b63b5e08a451c1082df5b6472d09157e5c542b0f9
- SHA512
  
  9589a5279ec64923376680b54c2b318ed5ff28085749280e976cb2058b8199fc4ebd6ab368fa1b8d35673f6962e53c0de46ecfcc49c0f8ea662b869a36292058
Score

9^/10

discovery
- Contacts a large (84981) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

gafgytmiraimirai_x86corona

behavioral1

© 2018-2025

Terms | Privacy