gafgyt | 6ff3f4f050d403a881f7b527896dadf4571663d81b1fd169dc69b99946a60f52 | Triage

Submit
Reports

Overview

overview

Static

static

6ff3f4f050...a60f52

linux_amd64

9

Sharing

General

Target

6ff3f4f050d403a881f7b527896dadf4571663d81b1fd169dc69b99946a60f52
Size

98KB
Sample

220701-h4h4aabbb8
MD5

736836f839f6366529fc9898e0d87e67
SHA1

68e3f98f946c2d349806a5b844f9441003efac23
SHA256

6ff3f4f050d403a881f7b527896dadf4571663d81b1fd169dc69b99946a60f52
SHA512

d7f4c38258bf9aad81bd273b725526b8cc44852424118ddbab1f6e3f19c24443875a25d3c3e138fd58801e5573f0e50797e503a86773088422d6fca991605e99

Score

10^/10

gafgyt mirai mirai_x86corona discovery linux

Static task

static1

gafgyt mirai mirai_x86corona

Behavioral task

behavioral1

Sample

6ff3f4f050d403a881f7b527896dadf4571663d81b1fd169dc69b99946a60f52

Resource

ubuntu1804-amd64-en-20211208

linux_amd64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  6ff3f4f050d403a881f7b527896dadf4571663d81b1fd169dc69b99946a60f52
- Size
  
  98KB
- MD5
  
  736836f839f6366529fc9898e0d87e67
- SHA1
  
  68e3f98f946c2d349806a5b844f9441003efac23
- SHA256
  
  6ff3f4f050d403a881f7b527896dadf4571663d81b1fd169dc69b99946a60f52
- SHA512
  
  d7f4c38258bf9aad81bd273b725526b8cc44852424118ddbab1f6e3f19c24443875a25d3c3e138fd58801e5573f0e50797e503a86773088422d6fca991605e99
Score

9^/10

discovery
- Contacts a large (23516) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

gafgytmiraimirai_x86corona

behavioral1

© 2018-2025

Terms | Privacy