gafgyt | ea76defaa17501397df224d7eb15ee71[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ea76defaa17501397df224d7eb15ee71.bin
Size

50KB
MD5

86df80e31f56bf4803d4d2e3340fdd7e
SHA1

b68d7cbec36108172337e0980b8b821b06c9a0a2
SHA256

05b02a1b8b835a0d32f2fa92d9fca2bf059b9c5089424bed8e556f66239dabd9
SHA512

f9e61430e78c4870d3a511891a7b65384e3daf45105bfdb3df9d922765bff6a6432d87ee878a530f3ba5a682c724ce9047a1eefc9244f94a1d77cfe45d43697f
SSDEEP

1536:1ZTvkSiSKTSh83cRXUcTrKVVA/ZLWEvdi1b1A:1B+483cBhrCqEmdAbW

Score

10^/10

gafgyt

Malware Config

Extracted

Family

gafgyt

C2

138.3.250.75:23

Signatures

Detected Gafgyt variant 1 IoCs

resource	yara_rule
static1/unpack001/83ed801c4ce0552edb6b7a21a0e8a6d881ccfb39799fa25cf399a2104ac68bf0.elf	family_gafgyt

Gafgyt family
gafgyt

Files

ea76defaa17501397df224d7eb15ee71.bin
.zip

Password: infected
83ed801c4ce0552edb6b7a21a0e8a6d881ccfb39799fa25cf399a2104ac68bf0.elf
.elf linux arm