gafgyt | 4a22da69b8865818685b2241fa1245c61887b4ac54d9e0c71edce186d36a2f9d | Triage

Submit
Reports

Overview

overview

Static

static

4a22da69b8...6a2f9d

linux_amd64

9

Sharing

General

Target

4a22da69b8865818685b2241fa1245c61887b4ac54d9e0c71edce186d36a2f9d
Size

137KB
Sample

220712-rsr2gsdhck
MD5

2a532ac01fb5dd356cbefc2886eee9ca
SHA1

46cfe0bede0a6bd7ae4b2a102a67a02560339b25
SHA256

4a22da69b8865818685b2241fa1245c61887b4ac54d9e0c71edce186d36a2f9d
SHA512

66e0e6e97a8b952bda8852b925a7f87a5df96b1fa7124299a005a642d15327816160b02149b5aac67187c472ab43d33be3f0c17ca4578a6f4362630c1d8209e2

Score

10^/10

gafgyt mirai mirai_x86corona discovery linux

Static task

static1

gafgyt mirai mirai_x86corona

Behavioral task

behavioral1

Sample

4a22da69b8865818685b2241fa1245c61887b4ac54d9e0c71edce186d36a2f9d

Resource

ubuntu1804-amd64-en-20211208

linux_amd64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  4a22da69b8865818685b2241fa1245c61887b4ac54d9e0c71edce186d36a2f9d
- Size
  
  137KB
- MD5
  
  2a532ac01fb5dd356cbefc2886eee9ca
- SHA1
  
  46cfe0bede0a6bd7ae4b2a102a67a02560339b25
- SHA256
  
  4a22da69b8865818685b2241fa1245c61887b4ac54d9e0c71edce186d36a2f9d
- SHA512
  
  66e0e6e97a8b952bda8852b925a7f87a5df96b1fa7124299a005a642d15327816160b02149b5aac67187c472ab43d33be3f0c17ca4578a6f4362630c1d8209e2
Score

9^/10

discovery
- Contacts a large (164298) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

gafgytmiraimirai_x86corona

behavioral1

© 2018-2024

Terms | Privacy