gafgyt | 128e4ab51a5fac2d0dbec5f99ab2ecf2[.]bin | Triage

Sharing

General

Target

128e4ab51a5fac2d0dbec5f99ab2ecf2.bin
Size

60KB
MD5

1069d64c18e8aa48d5c8fa5eb1583ef5
SHA1

4dfc141dd95f4e98f1616f19de9fa3bdfe9f82ea
SHA256

bc50ff4a44d2b2f67181723dbf7d07b44c1facfc5abcbc18de48a83cbb076a02
SHA512

432ec70956a36923e53927a033902d4bc74590b4ed592625a4984383322d7087d5d59a5ab2c7dc3a910bb7d8218fad00cae2cfd573a81b0115cda5b77fbfe07a
SSDEEP

1536:tImsX1HUlBxPJwHoXF/ooVw1io6aFGg05T:mmsX10DJJwIV/ZVwqfgw

Score

10^/10

gafgyt

Malware Config

Signatures

Detected Gafgyt variant 1 IoCs

Processes:

resource	yara_rule
static1/unpack001/412eafe68515fcc624b87190cd42c1e062fd5e073d1c0a41a50de21a6c05c128.elf	family_gafgyt

Gafgyt family
gafgyt

Files

128e4ab51a5fac2d0dbec5f99ab2ecf2.bin
.zip

Password: infected
412eafe68515fcc624b87190cd42c1e062fd5e073d1c0a41a50de21a6c05c128.elf
.elf linux arm