gafgyt | 534902f7681eed2529a658964674ae8a[.]elf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

534902f7681eed2529a658964674ae8a.elf
Size

117KB
MD5

534902f7681eed2529a658964674ae8a
SHA1

b64f18f35815430d6e8e222109a52ae78e910d31
SHA256

e447a7094294554c6fa57f06ba78050c1ccb7cfa06d3b153b4441476ec09ba7d
SHA512

3bfadab029f7667f76f026d67369eae4528f2fb6a8caaa782a264c83e2ef04a8695259bdf2426d5a71b0eac2512862696109ac62273c9ad2263287b69e08c084
SSDEEP

3072:hQrFRNfuLrGhEPOD0wg3gNlmBoHQuQekQnYW:IFzuaEGQwg3CmBoHQuQekQnYW

Score

10^/10

gafgyt

Malware Config

Extracted

Family

gafgyt

C2

172.104.44.216:23

Signatures

Detected Gafgyt variant 1 IoCs

resource	yara_rule
sample	family_gafgyt

Gafgyt family
gafgyt

Files

534902f7681eed2529a658964674ae8a.elf
.elf linux arm