gafgyt | 4bc2120f0b2570e87618043063f04698575f9460f5f730a17661a0b43c6acd35 | Triage

Sharing

General

Target

e1ab590b88d447dffe86bc899828ffa1.elf
Size

83KB
Sample

221201-ajc3jacb8s
MD5

e1ab590b88d447dffe86bc899828ffa1
SHA1

9bbdccfbd44ffcf886e0559dba08d9697d6ca9bb
SHA256

4bc2120f0b2570e87618043063f04698575f9460f5f730a17661a0b43c6acd35
SHA512

1cd5a94e2506653b5eb879a30ec355213203db4a5de27e3fe99fc620196505968e91838fc3b687c80c38aea1e9f2171a6c5416030d8f40a125ac6c776ae8d59b
SSDEEP

1536:W35b9Vc4N3J6lreu5r4hWj8LEWDloRmF+wVOz+sXcfW7k:Ab9Vc4JJ6liuq0YA2oRmEwVOz+ucfW7k

Score

10^/10

gafgyt discovery linux

Malware Config

Targets

- Target
  
  e1ab590b88d447dffe86bc899828ffa1.elf
- Size
  
  83KB
- MD5
  
  e1ab590b88d447dffe86bc899828ffa1
- SHA1
  
  9bbdccfbd44ffcf886e0559dba08d9697d6ca9bb
- SHA256
  
  4bc2120f0b2570e87618043063f04698575f9460f5f730a17661a0b43c6acd35
- SHA512
  
  1cd5a94e2506653b5eb879a30ec355213203db4a5de27e3fe99fc620196505968e91838fc3b687c80c38aea1e9f2171a6c5416030d8f40a125ac6c776ae8d59b
- SSDEEP
  
  1536:W35b9Vc4N3J6lreu5r4hWj8LEWDloRmF+wVOz+sXcfW7k:Ab9Vc4JJ6liuq0YA2oRmEwVOz+ucfW7k
Score

9^/10

discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1