Overview

overview

10

Static

static

10

659838bed2...f1.elf

ubuntu-18.04-amd64

659838bed2...f1.elf

debian-9-armhf

659838bed2...f1.elf

debian-9-mips

659838bed2...f1.elf

debian-9-mipsel

Sharing

Copy URL Twitter E-mail

General

  • Target

    ae6c921242204ed87e579e432376df0e.bin

  • Size

    44KB

  • MD5

    ddee702dbe7f0f3f2194ef8af8a9f482

  • SHA1

    d5aee5d15cdfadeb1221f9b7d6888192536d5e10

  • SHA256

    37f4e871da87832cb3f4faed5f716311e3604ee516faff9045fcedf99cb5ea31

  • SHA512

    d5700bc27a10f2f2cc353d5551bd960c12f2de08883d6e41b8eb3545eef99c4e7b603908189bda1c00a00a9ed97d38722cc82346ad21a3132b215e5c34edfea6

  • SSDEEP

    768:TIfFJ8ma/y5F5JaK91fLF6bc78lbCtI2djctwu85T2/VZiebOcwy3kk9v8j:O2m+eFms1k1lSI2dj5u85a/VDbORy31G

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

2.57.122.129:8889

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • ae6c921242204ed87e579e432376df0e.bin
    .zip

    Password: infected

  • 659838bed2be65c437f228d3ce7e6aac413ab6b99762137162b43472052c69f1.elf
    .elf linux