gafgyt | 23c64617b65455f94e4ee6534b2ac1b691345308939b5fbdeaf9543fc0d6d42c | Triage

Sharing

General

Target

7569d1d3ed61d6b16d542674f17e86de.elf
Size

134KB
Sample

230319-j95pxahg2v
MD5

7569d1d3ed61d6b16d542674f17e86de
SHA1

2df94b925e38f1ec8fb7ba7367dfa795fab5603c
SHA256

23c64617b65455f94e4ee6534b2ac1b691345308939b5fbdeaf9543fc0d6d42c
SHA512

c436ae6bdddc471bf885020223c163c63684cb018ca9b1b6f869034c4c530f2f3290f98b0d52232710be72066bc49c7e9e904ff03b0e5ab9975915516daa6eca
SSDEEP

3072:bfnJQ/2SWmDFHlxT0ySZd04Q0tG6AqzuymRRkLECQiwYyD5hPk11eF3xemqY1fu5:7unigD5hPo8F3xemqY1fuBmvm

Score

10^/10

gafgyt

Malware Config

Targets

- Target
  
  7569d1d3ed61d6b16d542674f17e86de.elf
- Size
  
  134KB
- MD5
  
  7569d1d3ed61d6b16d542674f17e86de
- SHA1
  
  2df94b925e38f1ec8fb7ba7367dfa795fab5603c
- SHA256
  
  23c64617b65455f94e4ee6534b2ac1b691345308939b5fbdeaf9543fc0d6d42c
- SHA512
  
  c436ae6bdddc471bf885020223c163c63684cb018ca9b1b6f869034c4c530f2f3290f98b0d52232710be72066bc49c7e9e904ff03b0e5ab9975915516daa6eca
- SSDEEP
  
  3072:bfnJQ/2SWmDFHlxT0ySZd04Q0tG6AqzuymRRkLECQiwYyD5hPk11eF3xemqY1fu5:7unigD5hPo8F3xemqY1fuBmvm
Score

8^/10
- Writes DNS configuration
  Writes data to DNS resolver config file.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Dynamic Resolution

Exfiltration

Impact

Tasks

static1

behavioral1