Overview

overview

5

Static

static

1

send_gafgyt_v0.4.sh

ubuntu-18.04-amd64

5

send_gafgyt_v0.4.sh

debian-9-armhf

1

send_gafgyt_v0.4.sh

debian-9-mips

5

send_gafgyt_v0.4.sh

debian-9-mipsel

5

Analysis

  • max time kernel
    4s
  • max time network
    103s
  • platform
    linux_amd64
  • resource
    ubuntu1804-amd64-en-20211208
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-en-20211208kernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    24-04-2023 14:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    send_gafgyt_v0.4.sh

  • Size

    2KB

  • MD5

    03c58e9c943eeee91eb8bf80f4df00e2

  • SHA1

    703a77d14235452b77e2cf45f6783bca47d77208

  • SHA256

    69312835335de3104cb0330197a8e1e8f51a2650a875187318d7402e57c8a76e

  • SHA512

    b614b0c719ceaf8cf62606d46393256ab981fc0a4eeddd83179698c304983fbea6943118c6b310fb6bfcf29013a7ad1b353ab10c460159ffc99baa8e6791b62c

Score
5/10

Malware Config

Signatures

  • Writes file to tmp directory 1 IoCs

    Malware often drops required files in the /tmp directory.

Processes

  • /tmp/send_gafgyt_v0.4.sh
    /tmp/send_gafgyt_v0.4.sh
    1⤵
    • Writes file to tmp directory
    PID:584

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads