gafgyt | c4c9a68b417304505144cf984870b8503b826e8deafa55e313f9979c960db045 | Triage

Submit
Reports

Overview

overview

Static

static

dcbc435652...15ccb0

ubuntu-18.04-amd64

9

Sharing

General

Target

dcbc435652f71bf12652e5206c15ccb0
Size

124KB
Sample

220812-tx3pwsfchk
MD5

dcbc435652f71bf12652e5206c15ccb0
SHA1

cfd6e0a8ad1b498e67638f99cc89d961c70a47df
SHA256

c4c9a68b417304505144cf984870b8503b826e8deafa55e313f9979c960db045
SHA512

dd676e6bcb1db4195a190f9447788da03743e77b1b59bbd32faf8f0af4e2d64b4fea701eb18c2fad62e99cb3590c7cfacead6205d9dd55ad1ae03fb0d6e92c52

Score

10^/10

gafgyt mirai mirai_x86corona discovery linux

Static task

static1

gafgyt mirai mirai_x86corona

6 signatures

Behavioral task

behavioral1

Sample

dcbc435652f71bf12652e5206c15ccb0

Resource

ubuntu1804-amd64-en-20211208

ubuntu-18.04-amd64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  dcbc435652f71bf12652e5206c15ccb0
- Size
  
  124KB
- MD5
  
  dcbc435652f71bf12652e5206c15ccb0
- SHA1
  
  cfd6e0a8ad1b498e67638f99cc89d961c70a47df
- SHA256
  
  c4c9a68b417304505144cf984870b8503b826e8deafa55e313f9979c960db045
- SHA512
  
  dd676e6bcb1db4195a190f9447788da03743e77b1b59bbd32faf8f0af4e2d64b4fea701eb18c2fad62e99cb3590c7cfacead6205d9dd55ad1ae03fb0d6e92c52
Score

9^/10

discovery
- Contacts a large (68612) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

gafgytmiraimirai_x86corona

behavioral1

© 2018-2024

Terms | Privacy