Overview

overview

10

Static

static

10

9bb382471d...c3.elf

ubuntu-18.04-amd64

9bb382471d...c3.elf

debian-9-armhf

9bb382471d...c3.elf

debian-9-mips

9bb382471d...c3.elf

debian-9-mipsel

Sharing

Copy URL Twitter E-mail

General

  • Target

    c4f0bed8e8f28a628a71058fb5a39724.bin

  • Size

    42KB

  • MD5

    b448967c2c5ac9f30fe4762327b50961

  • SHA1

    3c6ebaec21578254b9673334505e49597d83451d

  • SHA256

    0bde1fb3324bf73952c3720bc14f85df05bc2442031edbde4f528be95a3b30cb

  • SHA512

    38422c192eda1b1e154a7b97e27227a4c034f322eeaddbe5951f0dd9fbddaaf743aa63fa9d5800daf93683cfb33b8d35701ca6ffb099e14d2fe6d67c2978b6a9

  • SSDEEP

    768:YCkBDyPXUzejH5Vfa9wGO4KVESGQQ/L0fbjn+483RRR5WNhsSY0vITRTI2B:ADyPXUzwHHKw935eL0v+ZhRnWNKqIl1B

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

193.35.18.212:606

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • c4f0bed8e8f28a628a71058fb5a39724.bin
    .zip

    Password: infected

  • 9bb382471ddd364472b86999d79ad31cfc20b0e1df98d641d30852dcf9e983c3.elf
    .elf linux sh