Overview

overview

10

Static

static

10

e79f6fd8ea...a1.elf

ubuntu-18.04-amd64

6

Sharing

Copy URL Twitter E-mail

General

  • Target

    6b245d02eb55a41bc881954f9ed415ac.bin

  • Size

    39KB

  • MD5

    5f7c3ef9776a347f3d3ff456fc715d14

  • SHA1

    7335671787ab28344307f82e7800cc0efbdc8ff4

  • SHA256

    a98fdc66ad7e9803502d02ba28528bda444c73547240f476b31afd9ad7e62df7

  • SHA512

    faaac5c0840356b29760ce052a172af177998ee0bf4f94f33715922061dfeddd6c4004dd2af73b752f359b2a917a50cd1f84bc56a2035428556821c5994cc347

  • SSDEEP

    768:vwTpeBCqZ5WKrjtT1+OUstX/BU3OnQKSMdMR9Iu9Q0oheB2wD6HwTmt7CUW:YTpeBxHrVustX/By3xMdWaLJheBR2H4p

Score
10/10
botnetgafgyt

Malware Config

Extracted

Family

gafgyt

C2

45.61.184.126:2782

Signatures

  • Contains strings common to LOLSquad DDoS tools 1 IoCs

    Resembles a range of public tools written in C intended for DDoS attacks.

    botnet
  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • 6b245d02eb55a41bc881954f9ed415ac.bin
    .zip

    Password: infected

  • e79f6fd8ea847e4051109a8e00088e5fd1f3ab371658691e96db888193dae3a1.elf
    .elf linux x86