gafgyt | 5b083b1ec2e4bf049633bd64b3e856a8baac43e79c099c7034ad5d6f03dae6cf | Triage

Submit
Reports

Overview

overview

Static

static

5b083b1ec2...dae6cf

ubuntu-18.04-amd64

9

Sharing

General

Target

5b083b1ec2e4bf049633bd64b3e856a8baac43e79c099c7034ad5d6f03dae6cf
Size

124KB
Sample

220802-bqk76adag6
MD5

7351114ec11aeca42464ab033a0c957e
SHA1

c69b964a307a1a110cd8559912e8a00093cc7034
SHA256

5b083b1ec2e4bf049633bd64b3e856a8baac43e79c099c7034ad5d6f03dae6cf
SHA512

be6170de8ec65c546d9085f559fc9df54eae11f481b3f8154e28ce88e7dda4b20650146179d198e8fc8f1cd855546f2d364d3b666b2d49be3ceaec60850f5414

Score

10^/10

gafgyt mirai mirai_x86corona discovery linux

Static task

static1

gafgyt mirai mirai_x86corona

6 signatures

Behavioral task

behavioral1

Sample

5b083b1ec2e4bf049633bd64b3e856a8baac43e79c099c7034ad5d6f03dae6cf

Resource

ubuntu1804-amd64-en-20211208

ubuntu-18.04-amd64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  5b083b1ec2e4bf049633bd64b3e856a8baac43e79c099c7034ad5d6f03dae6cf
- Size
  
  124KB
- MD5
  
  7351114ec11aeca42464ab033a0c957e
- SHA1
  
  c69b964a307a1a110cd8559912e8a00093cc7034
- SHA256
  
  5b083b1ec2e4bf049633bd64b3e856a8baac43e79c099c7034ad5d6f03dae6cf
- SHA512
  
  be6170de8ec65c546d9085f559fc9df54eae11f481b3f8154e28ce88e7dda4b20650146179d198e8fc8f1cd855546f2d364d3b666b2d49be3ceaec60850f5414
Score

9^/10

discovery
- Contacts a large (69086) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

gafgytmiraimirai_x86corona

behavioral1

© 2018-2024

Terms | Privacy