gafgyt | 3f3e75dd20623d1f4f212f627087c062[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3f3e75dd20623d1f4f212f627087c062.bin
Size

41KB
MD5

8b4cb5bb9fd5f1fd58740861aa871512
SHA1

2225c4cc77c3d40a3913fe9569013238ec0c7279
SHA256

86544ae2ca2bd1e88709ffb047dfc0f69107de495804823f23f09f6c361fbc71
SHA512

46d4a3b855d1d88359da0b0f0eb8518a179c729b4c9c807b048934500e0bc9f78dae9f07b2ba8b107e5ee5b12bd358ba895f753e97ee7773572040f153c82ef1
SSDEEP

768:NkceNL0vSrxl6jfe4fSHW9zRQ9PQ37BJvhlDsqpQ:bUrij0HylQ9oL/XQqq

Score

10^/10

gafgyt

Malware Config

Extracted

Family

gafgyt

C2

2.57.122.129:8889

Signatures

Detected Gafgyt variant 1 IoCs

resource	yara_rule
static1/unpack001/6f1885f22875d7c7c487d3118f4df36bda833a71be2cdda113b44f65926807f5.elf	family_gafgyt

Gafgyt family
gafgyt

Files

3f3e75dd20623d1f4f212f627087c062.bin
.zip

Password: infected
6f1885f22875d7c7c487d3118f4df36bda833a71be2cdda113b44f65926807f5.elf
.elf linux x86