gafgyt | 4f65bdb5fa27a5a73e9dfe963fbc785e66ebba56093b30b259f72e5379fa3380 | Triage

Submit
Reports

Overview

overview

Static

static

e0f4b2c195...98.elf

ubuntu-18.04-amd64

9

Sharing

General

Target

e0f4b2c195634626c31fbca8f7ef9a98.elf
Size

83KB
Sample

230318-wm1tnafc7x
MD5

e0f4b2c195634626c31fbca8f7ef9a98
SHA1

a093bfbdd3b4a25f8a96d413a601af88d3916450
SHA256

4f65bdb5fa27a5a73e9dfe963fbc785e66ebba56093b30b259f72e5379fa3380
SHA512

a3f77e2ae9eba60657c4cc4334b02de79b8cc2e8bfaa5d8f9a606fcd9155be625cde2b42e063e7b8b2c0252346be21aa5e71b93e809791f979d4a3166fc861de
SSDEEP

1536:UB7crF7FePF5tZuEqdPUq0aJb9sqx3CjrM3X+uWIr8UmoIYuOVje+ZNne:URQFet5O7dPr0oSwyjr4X+uDnmrYuOVA

Score

10^/10

gafgyt discovery linux

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

e0f4b2c195634626c31fbca8f7ef9a98.elf

Resource

ubuntu1804-amd64-20221111-en

ubuntu-18.04-amd64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  e0f4b2c195634626c31fbca8f7ef9a98.elf
- Size
  
  83KB
- MD5
  
  e0f4b2c195634626c31fbca8f7ef9a98
- SHA1
  
  a093bfbdd3b4a25f8a96d413a601af88d3916450
- SHA256
  
  4f65bdb5fa27a5a73e9dfe963fbc785e66ebba56093b30b259f72e5379fa3380
- SHA512
  
  a3f77e2ae9eba60657c4cc4334b02de79b8cc2e8bfaa5d8f9a606fcd9155be625cde2b42e063e7b8b2c0252346be21aa5e71b93e809791f979d4a3166fc861de
- SSDEEP
  
  1536:UB7crF7FePF5tZuEqdPUq0aJb9sqx3CjrM3X+uWIr8UmoIYuOVje+ZNne:URQFet5O7dPr0oSwyjr4X+uDnmrYuOVA
Score

9^/10

discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
- Reads system network configuration
  Uses contents of /proc filesystem to enumerate network settings.
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

System Network Configuration Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy