gafgyt | 8837e16be1454a6b88941fc63ec9a8ca700d5f0b181bc6122399a2dedd4ae8e5 | Triage

Submit
Reports

Overview

overview

Static

static

8837e16be1...4ae8e5

ubuntu-18.04-amd64

9

Sharing

General

Target

8837e16be1454a6b88941fc63ec9a8ca700d5f0b181bc6122399a2dedd4ae8e5
Size

124KB
Sample

220731-nm4asaeab8
MD5

c02fd78e70c9bcda603c6f718828cb53
SHA1

8df94de2fa563ca0e08bb0b7efea940cbbe3b3d6
SHA256

8837e16be1454a6b88941fc63ec9a8ca700d5f0b181bc6122399a2dedd4ae8e5
SHA512

a0eea12891c960613d93e08886149fa33bd3e050de321a6c6a7e3f6158891dfa2633c085c6fc0f789d05cee99f731329178fa9a729d46494327ce7b2418c0b64

Score

10^/10

gafgyt mirai mirai_x86corona discovery linux

Static task

static1

gafgyt mirai mirai_x86corona

6 signatures

Behavioral task

behavioral1

Sample

8837e16be1454a6b88941fc63ec9a8ca700d5f0b181bc6122399a2dedd4ae8e5

Resource

ubuntu1804-amd64-en-20211208

ubuntu-18.04-amd64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  8837e16be1454a6b88941fc63ec9a8ca700d5f0b181bc6122399a2dedd4ae8e5
- Size
  
  124KB
- MD5
  
  c02fd78e70c9bcda603c6f718828cb53
- SHA1
  
  8df94de2fa563ca0e08bb0b7efea940cbbe3b3d6
- SHA256
  
  8837e16be1454a6b88941fc63ec9a8ca700d5f0b181bc6122399a2dedd4ae8e5
- SHA512
  
  a0eea12891c960613d93e08886149fa33bd3e050de321a6c6a7e3f6158891dfa2633c085c6fc0f789d05cee99f731329178fa9a729d46494327ce7b2418c0b64
Score

9^/10

discovery
- Contacts a large (69078) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

gafgytmiraimirai_x86corona

behavioral1

© 2018-2024

Terms | Privacy