Overview

overview

10

Static

static

10

629aed438e...a8.elf

ubuntu-18.04-amd64

629aed438e...a8.elf

debian-9-armhf

629aed438e...a8.elf

debian-9-mips

629aed438e...a8.elf

debian-9-mipsel

Sharing

Copy URL
Twitter E-mail

General

  • Target

    06fe55343d17266c6e2718e95a3296d5.bin

  • Size

    39KB

  • MD5

    e5c164f6e88ae91808cd6a50fa042141

  • SHA1

    c1018aaf892fa852648234fcc2bca46a19d74e4b

  • SHA256

    ab63d72ffa000a04a0f14032bd22ac800f0e511d932606f49f31e137e3daca1f

  • SHA512

    3c64218261a61c07a945e4bcd32d6fc5a41ed05ba5bd5157a74d567f8892fb9044f8e83a3961b89708a1bb756757ae1a3277189e6aacd732d8e2d7b3ddfa03ba

  • SSDEEP

    768:V9r4t2G036uiMSTn6qiGW3R6Cw+LUpNClwrv/XoYsmy+W+y+w0g:r4fRdTnnzWfEMwrv/d0+ZY

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

51.68.165.13:1111

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • 06fe55343d17266c6e2718e95a3296d5.bin
    .zip

    Password: infected

  • 629aed438e9fd58854a5e0c0f30c566bf1e7775a36a12e892964eac45cf4afa8.elf
    .elf linux ppc