gafgyt | 3e3dbe923ff716a40985ea8516c1500f[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3e3dbe923ff716a40985ea8516c1500f.bin
Size

53KB
MD5

49a2de1b7018e6b885350f63d3fb0b27
SHA1

74bc8e8309c286229efbaff35f9e342aa80cea2c
SHA256

1b6535a24e1a3ec5bac410dc36077b7c3bc6117d1fcacbdae307f32345e55e75
SHA512

da7267aa10f9ddab470d32718556536313d8e24c38bf598b6aa76d71b9265df7084cf5e1d019d38390f277a1e3a8da840bdd03ea50f5f52d42a9233d2256d152
SSDEEP

1536:5iTeQebw4zHwUWwdlUOHDJ3lq62jVGX00SUp:MqQe84zHtWglD4A09Up

Score

10^/10

gafgyt

Malware Config

Extracted

Family

gafgyt

C2

178.218.146.89:839

Signatures

Detected Gafgyt variant 1 IoCs

resource	yara_rule
static1/unpack001/df8727d8a77d64c6642306b4f692889549ee5ac45746717be89a248511f5cb08.elf	family_gafgyt

Gafgyt family
gafgyt

Files

3e3dbe923ff716a40985ea8516c1500f.bin
.zip

Password: infected
df8727d8a77d64c6642306b4f692889549ee5ac45746717be89a248511f5cb08.elf
.elf linux arm