gafgyt | 8efe3ae35c02b91e4ea6a55b5902b3de0bfa3331e750a88375992504958ab412 | Triage

Submit
Reports

Overview

overview

Static

static

8efe3ae35c...8ab412

ubuntu-18.04-amd64

9

Sharing

General

Target

8efe3ae35c02b91e4ea6a55b5902b3de0bfa3331e750a88375992504958ab412
Size

106KB
Sample

220725-acxtcsefek
MD5

60223738106f7accc114a9644394fa95
SHA1

d88f03e7ca61e77fe203d9a4b5f0dc8f36e05b4c
SHA256

8efe3ae35c02b91e4ea6a55b5902b3de0bfa3331e750a88375992504958ab412
SHA512

43b87d9697225ff275cd3e76b50df340aed8f27419ef5a57960befc414bc6f7e18b650bf28dcc1685f351a61c8a984c55a8ef6480bc3ad6237648760b4d10a61

Score

10^/10

gafgyt mirai mirai_x86corona discovery

Static task

static1

gafgyt mirai mirai_x86corona

6 signatures

Behavioral task

behavioral1

Sample

8efe3ae35c02b91e4ea6a55b5902b3de0bfa3331e750a88375992504958ab412

Resource

ubuntu1804-amd64-en-20211208

ubuntu-18.04-amd64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  8efe3ae35c02b91e4ea6a55b5902b3de0bfa3331e750a88375992504958ab412
- Size
  
  106KB
- MD5
  
  60223738106f7accc114a9644394fa95
- SHA1
  
  d88f03e7ca61e77fe203d9a4b5f0dc8f36e05b4c
- SHA256
  
  8efe3ae35c02b91e4ea6a55b5902b3de0bfa3331e750a88375992504958ab412
- SHA512
  
  43b87d9697225ff275cd3e76b50df340aed8f27419ef5a57960befc414bc6f7e18b650bf28dcc1685f351a61c8a984c55a8ef6480bc3ad6237648760b4d10a61
Score

9^/10

discovery
- Contacts a large (23518) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

gafgytmiraimirai_x86corona

behavioral1

© 2018-2024

Terms | Privacy