gafgyt | edc09066e6e71121e130bc7a098cd8df6e194e1063fb6c98adf67da8ec3d8f46 | Triage

Submit
Reports

Overview

overview

Static

static

edc09066e6...3d8f46

ubuntu-18.04-amd64

9

Sharing

General

Target

edc09066e6e71121e130bc7a098cd8df6e194e1063fb6c98adf67da8ec3d8f46
Size

98KB
Sample

220724-3nclsadffk
MD5

ba029fbda3883d69aee9ce5c98a5212f
SHA1

ee8e943873d3590b9a7dc499e27df16e130c0a41
SHA256

edc09066e6e71121e130bc7a098cd8df6e194e1063fb6c98adf67da8ec3d8f46
SHA512

808d651c456b71b15daa055150485306f0fa983dd3f5b148e98f2bf4711cfbd029df662ea9f2af4441e552a910fab29bf3e982aedc71dd43f22013e8ac8c6c82

Score

10^/10

gafgyt mirai mirai_x86corona discovery

Static task

static1

gafgyt mirai mirai_x86corona

6 signatures

Behavioral task

behavioral1

Sample

edc09066e6e71121e130bc7a098cd8df6e194e1063fb6c98adf67da8ec3d8f46

Resource

ubuntu1804-amd64-en-20211208

ubuntu-18.04-amd64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  edc09066e6e71121e130bc7a098cd8df6e194e1063fb6c98adf67da8ec3d8f46
- Size
  
  98KB
- MD5
  
  ba029fbda3883d69aee9ce5c98a5212f
- SHA1
  
  ee8e943873d3590b9a7dc499e27df16e130c0a41
- SHA256
  
  edc09066e6e71121e130bc7a098cd8df6e194e1063fb6c98adf67da8ec3d8f46
- SHA512
  
  808d651c456b71b15daa055150485306f0fa983dd3f5b148e98f2bf4711cfbd029df662ea9f2af4441e552a910fab29bf3e982aedc71dd43f22013e8ac8c6c82
Score

9^/10

discovery
- Contacts a large (189545) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

gafgytmiraimirai_x86corona

behavioral1

© 2018-2024

Terms | Privacy