gafgyt | b34c38d932fa44fd7ba203b0c8abd2d0[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b34c38d932fa44fd7ba203b0c8abd2d0.bin
Size

38KB
MD5

2af47f16d615507cb743ad6ebd631d23
SHA1

98ca2a8965a2a980e1c7af25f66cba6e42e2fd73
SHA256

248354e5c403c29bd1a35b066bdc5dde424578c223de7c8f42f827d64c00b96e
SHA512

b42006b757c165a8d4887a8aa9ff11e670e6b1d3b30664ea50a6294bafbac576d12031b1909752c2032cb1083db18998fba8010b3e77a544e9d63068f1a29b31
SSDEEP

768:SShbwLUhfxBlpyQ5L10G9+o4C+hkDomXxUcT79ZT:SchftpyWx0+H+hk/xTBZT

Score

10^/10

gafgyt

Malware Config

Extracted

Family

gafgyt

C2

193.35.18.212:606

Signatures

Detected Gafgyt variant 1 IoCs

resource	yara_rule
static1/unpack001/e04eacb23d3b484d3cf2e7534fb792bafcefb59befa16f73a6587685b6463a50.elf	family_gafgyt

Gafgyt family
gafgyt

Files

b34c38d932fa44fd7ba203b0c8abd2d0.bin
.zip

Password: infected
e04eacb23d3b484d3cf2e7534fb792bafcefb59befa16f73a6587685b6463a50.elf
.elf linux x86