gafgyt | 52eeaa3762fe6a99ae6153cbc2a489a60764bf8682788f4982676bac010a9bea | Triage

Submit
Reports

Overview

overview

Static

static

52eeaa3762...0a9bea

ubuntu-18.04-amd64

9

Sharing

General

Target

52eeaa3762fe6a99ae6153cbc2a489a60764bf8682788f4982676bac010a9bea
Size

98KB
Sample

220717-bt1r1sade5
MD5

7d637c4e8f4b9c028a1bbaceda926af2
SHA1

0dd88db3b40ff23acd6ca5aa660734a2074f86a0
SHA256

52eeaa3762fe6a99ae6153cbc2a489a60764bf8682788f4982676bac010a9bea
SHA512

0e7bdefead73e10df5be8af6d1002f137e60b2a1357db3f0aa427dc81dd18ab86b6b05313a474db22cbbe251ce72db64ae02d0d4a4d753e13374855db3391012

Score

10^/10

gafgyt mirai mirai_x86corona discovery

Static task

static1

gafgyt mirai mirai_x86corona

6 signatures

Behavioral task

behavioral1

Sample

52eeaa3762fe6a99ae6153cbc2a489a60764bf8682788f4982676bac010a9bea

Resource

ubuntu1804-amd64-en-20211208

ubuntu-18.04-amd64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  52eeaa3762fe6a99ae6153cbc2a489a60764bf8682788f4982676bac010a9bea
- Size
  
  98KB
- MD5
  
  7d637c4e8f4b9c028a1bbaceda926af2
- SHA1
  
  0dd88db3b40ff23acd6ca5aa660734a2074f86a0
- SHA256
  
  52eeaa3762fe6a99ae6153cbc2a489a60764bf8682788f4982676bac010a9bea
- SHA512
  
  0e7bdefead73e10df5be8af6d1002f137e60b2a1357db3f0aa427dc81dd18ab86b6b05313a474db22cbbe251ce72db64ae02d0d4a4d753e13374855db3391012
Score

9^/10

discovery
- Contacts a large (23519) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

gafgytmiraimirai_x86corona

behavioral1

© 2018-2024

Terms | Privacy