Overview

overview

10

Static

static

10

1a239fee16...f8.elf

ubuntu-18.04-amd64

1a239fee16...f8.elf

debian-9-armhf

1a239fee16...f8.elf

debian-9-mips

1a239fee16...f8.elf

debian-9-mipsel

Sharing

Copy URL Twitter E-mail

General

  • Target

    5a6abe8513a005418cea78aeca376723.bin

  • Size

    45KB

  • MD5

    51432a3639e9a54be61671d185964302

  • SHA1

    4d8f72c814fa6af3a5749d8353a6a454f6e96609

  • SHA256

    56941e98d4354e51e024b26f88c94c9ae219657d7906e7d13375e3d63e83d487

  • SHA512

    5206456f3e3bdb99602c4a901cbbd39ed0f11da7f1a0bf819058a42eee66d8caa2d5606107891bbce8c6add0a63b672ca8052a94202ef7b4185b33cdaf795790

  • SSDEEP

    768:PmO9h1MOdH3cNmXLmVfzJLiF7ffXXa4+7SB7RtGGm3fvBS9dbMKoaFNFyZp+tfPH:Pm4fMOdXOmbkzJOF7fvXaYra3hS9CKoK

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

176.111.173.27:666

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • 5a6abe8513a005418cea78aeca376723.bin
    .zip

    Password: infected

  • 1a239fee16ae6f51bf808207754eb74605880806541ad9f819dfc208a758d7f8.elf
    .elf linux ppc