gafgyt | 598020acf8dc56ba5cc038cceab6ebec | Triage

Sharing

Copy URL Twitter E-mail

General

Target

598020acf8dc56ba5cc038cceab6ebec
Size

123KB
MD5

598020acf8dc56ba5cc038cceab6ebec
SHA1

4019fb27e9683622f8fb4f6e3c027ed588866bbf
SHA256

3c27fa4a44b902d4f2bc66b06ead535086d20fa3183b8495d9595db1793d29ed
SHA512

74a892d9a3bc6f42b47e2a9678cb18a8a7a61e04aae85b2c4a185e64de370bc898e69db4459a293e17a63538aa0abad9824965b258062904129bedec8b6c07ac
SSDEEP

3072:rMst3jz5syIE1V9w46ztKF6m1oi/qO6fpWLF:rMsljz5sdE1Z6zi6m1oi/qO6fpWLF

Score

10^/10

gafgyt

Malware Config

Extracted

Family

gafgyt

C2

185.11.146.237:3301

Signatures

Detected Gafgyt variant 1 IoCs

resource	yara_rule
sample	family_gafgyt

Gafgyt family
gafgyt

Files

598020acf8dc56ba5cc038cceab6ebec
.elf linux ppc