gafgyt | 5718980ee3eecb70c466bfffbde082e17d266c735fae2005a81a354263c73023 | Triage

Submit
Reports

Overview

overview

Static

static

5718980ee3...c73023

ubuntu-18.04-amd64

9

Sharing

General

Target

5718980ee3eecb70c466bfffbde082e17d266c735fae2005a81a354263c73023
Size

124KB
Sample

220725-ewmvqaeedn
MD5

766a8c4277f6fbcfa59c7cec7e79846c
SHA1

7e7f4e06af640d197a7af232acd573f393060c9e
SHA256

5718980ee3eecb70c466bfffbde082e17d266c735fae2005a81a354263c73023
SHA512

1089fd9a86c2bbdd617a9b76f6b96b92f36b8c94bea4ff6d10f95767aa35727c2e9be21a22ba2828b147d939fb97b44221c9518406de4f8b7ec746e69b957fbf

Score

10^/10

gafgyt mirai mirai_x86corona discovery

Static task

static1

gafgyt mirai mirai_x86corona

6 signatures

Behavioral task

behavioral1

Sample

5718980ee3eecb70c466bfffbde082e17d266c735fae2005a81a354263c73023

Resource

ubuntu1804-amd64-en-20211208

ubuntu-18.04-amd64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  5718980ee3eecb70c466bfffbde082e17d266c735fae2005a81a354263c73023
- Size
  
  124KB
- MD5
  
  766a8c4277f6fbcfa59c7cec7e79846c
- SHA1
  
  7e7f4e06af640d197a7af232acd573f393060c9e
- SHA256
  
  5718980ee3eecb70c466bfffbde082e17d266c735fae2005a81a354263c73023
- SHA512
  
  1089fd9a86c2bbdd617a9b76f6b96b92f36b8c94bea4ff6d10f95767aa35727c2e9be21a22ba2828b147d939fb97b44221c9518406de4f8b7ec746e69b957fbf
Score

9^/10

discovery
- Contacts a large (69091) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

gafgytmiraimirai_x86corona

behavioral1

© 2018-2024

Terms | Privacy