gafgyt | 306b4704abf061cb553649fafda0729e1966baa1bb90995f609970266243d878[.]zip

General

Target

306b4704abf061cb553649fafda0729e1966baa1bb90995f609970266243d878.zip
Size

36KB
MD5

8db6e7ecebaba89d68daa1a5156fd4a8
SHA1

3b1ff5a688f2c43be6ccaefde1a5d710a90f0eb0
SHA256

b796ef2511d8f2b78cc11cdcfe22e5763cab4c8379c5149399c65eb1dc4ef0d3
SHA512

451d9ef8aab307d5b530cd37178cb57aadff3948894a061b82df4e930ef130842e1b42835a59dfda653d60c652a702f0d0b869af6e6512ae50a2f988496191d8
SSDEEP

768:5tYIW5LRbHJiMf3T4EvoOilhIPuncKOBppDHcp7ojb6lLLZMF+HA:5iDRbJdilh4uncFnl8p7AeEAHA

Score

10^/10

gafgyt

Detected Gafgyt variant 1 IoCs

Processes:

resource	yara_rule
static1/unpack001/306b4704abf061cb553649fafda0729e1966baa1bb90995f609970266243d878.elf	family_gafgyt

306b4704abf061cb553649fafda0729e1966baa1bb90995f609970266243d878.zip
.zip

Password: infected
306b4704abf061cb553649fafda0729e1966baa1bb90995f609970266243d878.elf
.elf linux ppc