Overview

overview

10

Static

static

10

5676d80ebe...7d.elf

ubuntu-18.04-amd64

5676d80ebe...7d.elf

debian-9-armhf

5676d80ebe...7d.elf

debian-9-mips

5676d80ebe...7d.elf

debian-9-mipsel

Sharing

Copy URL Twitter E-mail

General

  • Target

    28130391774dcc49fb0613a7f70c2966.bin

  • Size

    40KB

  • MD5

    8cee10c9bd621ec53bb653a1f8f8589c

  • SHA1

    40ef17a38aa20b670075fe095685ae2946399d83

  • SHA256

    f900cd264f0adce56338bc9cbcd9c1ca7be651f044b4176d28dad50af2a13782

  • SHA512

    74c48e3457a6718c24c722c0191b93dad6aeecdbf38fe1560ca2c29eb71739c1b1092e3d910eb5673c30f60348f4e5803131b1e03a6f1bce40f3845888069dd1

  • SSDEEP

    768:Tc2RMR5n+cgl1jQ2b5x7ot7R1p+NoENKpaOWHia2L2nBO5Yl86Vth+DBi2V:TNRW5n10b5dot7Lp+N/NjODqgS26Vmka

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

178.218.146.89:839

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • 28130391774dcc49fb0613a7f70c2966.bin
    .zip

    Password: infected

  • 5676d80ebedd612f715a1ed42d18529e201f41a769fb0c2b28b922c6b2c7227d.elf
    .elf linux