Overview

overview

10

Static

static

10

a-r.m-7.blaze.elf

ubuntu-18.04-amd64

a-r.m-7.blaze.elf

debian-9-armhf

a-r.m-7.blaze.elf

debian-9-mips

a-r.m-7.blaze.elf

debian-9-mipsel

Sharing

Copy URL Twitter E-mail

General

  • Target

    a-r.m-7.blaze.elf

  • Size

    94KB

  • MD5

    d83f941be4e96bb0cc1f8739caa84c82

  • SHA1

    d771c1b1cc907bc2f954c861e356ea254efeedab

  • SHA256

    68c5bb8ba328c0020bf8d2b7dc5325b6cf4f6ad346aaa6deaff69d08811f63a0

  • SHA512

    c61db68053d999d6b298e352a33a7b0fb23c74536fb7c1bc99b2a358d563e2c262e539e654e9f7c1cf82b8693c4d34d4977c7e0f29d8de49020415d59f54f2ee

  • SSDEEP

    1536:kQhEMOa8BUy8298nML9Ct0kxge4KFXBbm1EGVjtIhUTLbl:kqjH8qF1nML9CP/fbmuGVjtIUTLbl

Score
10/10
botnetgafgyt

Malware Config

Extracted

Family

gafgyt

C2

45.61.184.126:2782

Signatures

  • Contains strings common to LOLSquad DDoS tools 1 IoCs

    Resembles a range of public tools written in C intended for DDoS attacks.

    botnet
  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • a-r.m-7.blaze.elf
    .elf linux ppc