Overview

overview

10

Static

static

10

24124a04e2...c5.elf

ubuntu-18.04-amd64

24124a04e2...c5.elf

debian-9-armhf

24124a04e2...c5.elf

debian-9-mips

24124a04e2...c5.elf

debian-9-mipsel

Sharing

Copy URL Twitter E-mail

General

  • Target

    d8be51a7159d7b5a6a4d34f5ba8928c9.bin

  • Size

    44KB

  • MD5

    01b663bfa62a20ced8198fe0c112fc69

  • SHA1

    41fcc38a92919beddae24ee6f200e17832af2397

  • SHA256

    1b1a612720ead165dbc3665154973fbaaa6c40edc9aea1545bd509c507522461

  • SHA512

    16ce105f5ff833264b6dc579e8ce02229dda6ddd7358b24eb804c42c3c7ccaa4d6dec9e07bed3ed59e9747c7e625a1e003ade1453786a1c44f99dbd147027f11

  • SSDEEP

    768:NSh3yQ3pqZoN+23icjSXIC3B8UfVpu9io3g39aj4g4lY9iEvvh1dqy2w/Jrx:4h3yQ5go7tWHRpt3L9Bg4lyiMZaVyN

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

45.88.66.177:23

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • d8be51a7159d7b5a6a4d34f5ba8928c9.bin
    .zip

    Password: infected

  • 24124a04e21f08ba69090b0b0bbb667d5fa4a0eb2828930067e9891cd82830c5.elf
    .elf linux