gafgyt | 7104ca59373bd21402c08158cc87fdec45bc86feebdcc6ad72f8584b87c151fe | Triage

Sharing

General

Target

acf09c522ceeb92d49033a23e1a47a2d.elf
Size

148KB
Sample

230317-pkfmdaab51
MD5

acf09c522ceeb92d49033a23e1a47a2d
SHA1

df13d10094985e4d15a96102827c6bd104818186
SHA256

7104ca59373bd21402c08158cc87fdec45bc86feebdcc6ad72f8584b87c151fe
SHA512

986d432046f17f5f68131d24e73fac727903cfecbff8920e330364f4ef37ba11ea3b0045232962b24cc72be616eb342cda16d9f8374a9d154b46cbcee6acb261
SSDEEP

1536:mVNs7K797V+nv57gbj6l6T6B6v6N6/6AePe1ebeZe5bwClA2rKQA1dXAQTI/e0h0:vY01ZkXAQT4NB9//ImlWs4zWfOodW

Score

10^/10

gafgyt

Malware Config

Targets

- Target
  
  acf09c522ceeb92d49033a23e1a47a2d.elf
- Size
  
  148KB
- MD5
  
  acf09c522ceeb92d49033a23e1a47a2d
- SHA1
  
  df13d10094985e4d15a96102827c6bd104818186
- SHA256
  
  7104ca59373bd21402c08158cc87fdec45bc86feebdcc6ad72f8584b87c151fe
- SHA512
  
  986d432046f17f5f68131d24e73fac727903cfecbff8920e330364f4ef37ba11ea3b0045232962b24cc72be616eb342cda16d9f8374a9d154b46cbcee6acb261
- SSDEEP
  
  1536:mVNs7K797V+nv57gbj6l6T6B6v6N6/6AePe1ebeZe5bwClA2rKQA1dXAQTI/e0h0:vY01ZkXAQT4NB9//ImlWs4zWfOodW
Score

9^/10
- Modifies the Watchdog daemon
  Malware like Mirai modify the Watchdog to prevent it restarting an infected system.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1