gafgyt | 90834ff6089d70c5c66a678d8e84d0ae[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

90834ff6089d70c5c66a678d8e84d0ae.bin
Size

37KB
MD5

80876341b9e2519f66a2504b92447ee1
SHA1

d0e2f631533b4c06158c35841811e7866fe58db8
SHA256

6dd282fbb797673edd31ade575bafe1f644af5d7eb4b2767c6322a0024a4b631
SHA512

7f935684440d900772d584c52fc959b0c3459959965281525adff4c7115bc7242e03ca963eee4cd95cd36af55013a269d27dc5c63e6650e4b6be0b0159e35da1
SSDEEP

768:w+XLTpReJZoQW4gFO6DlEe2nMfq5d3vKeQ0mD0:wSVgJZoRFF+nMq5IE60

Score

10^/10

gafgyt

Malware Config

Extracted

Family

gafgyt

C2

5.181.80.141:351

Signatures

Detected Gafgyt variant 1 IoCs

resource	yara_rule
static1/unpack001/8eeb02bf1a9aa5e9962988eadbe55a5c2f024c32655becaae06c7f944fcdc6f4.elf	family_gafgyt

Gafgyt family
gafgyt

Files

90834ff6089d70c5c66a678d8e84d0ae.bin
.zip

Password: infected
8eeb02bf1a9aa5e9962988eadbe55a5c2f024c32655becaae06c7f944fcdc6f4.elf
.elf linux x86