gafgyt | c16df270c0878921aad57519b7865cbf654c5d76ab4fe22ad2343bf22f36da7e | Triage

Submit
Reports

Overview

overview

Static

static

c9841c349d...e1df00

ubuntu-18.04-amd64

7

Sharing

General

Target

c9841c349d67618f4f76adb9d5e1df00
Size

83KB
Sample

220808-cadzksdfb6
MD5

c9841c349d67618f4f76adb9d5e1df00
SHA1

57390c22fc0a5e1c009cb56486dc13d0862da37f
SHA256

c16df270c0878921aad57519b7865cbf654c5d76ab4fe22ad2343bf22f36da7e
SHA512

e88fbdd87f9e7cbc5bd01e6aa26eaa397e2ef56657da9764be6bca14b541242f5fc3ea95c0a80f861922614db52d167cb87e22add46ecc1f4be2030f9a8366ae

Score

10^/10

gafgyt linux

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

c9841c349d67618f4f76adb9d5e1df00

Resource

ubuntu1804-amd64-en-20211208

ubuntu-18.04-amd64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  c9841c349d67618f4f76adb9d5e1df00
- Size
  
  83KB
- MD5
  
  c9841c349d67618f4f76adb9d5e1df00
- SHA1
  
  57390c22fc0a5e1c009cb56486dc13d0862da37f
- SHA256
  
  c16df270c0878921aad57519b7865cbf654c5d76ab4fe22ad2343bf22f36da7e
- SHA512
  
  e88fbdd87f9e7cbc5bd01e6aa26eaa397e2ef56657da9764be6bca14b541242f5fc3ea95c0a80f861922614db52d167cb87e22add46ecc1f4be2030f9a8366ae
Score

7^/10
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
- Reads system network configuration
  Uses contents of /proc filesystem to enumerate network settings.
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy