General

  • Target

    7ed14c3e540ac81411c52b068ea450fd

  • Size

    83KB

  • Sample

    231220-dchafscca2

  • MD5

    7ed14c3e540ac81411c52b068ea450fd

  • SHA1

    378caf533b6696a6e67f2b3b3b78fe96f3f8bf36

  • SHA256

    e96ecfc52cb2ca8fe12a02acb6092901e32ba86070732358f40f42b3cd5acd92

  • SHA512

    21d43e4f84556918e587f643997bfcc0e061e5ca3fa46d6f1dba912708f35b6dc0b8cc272e012c848bfd548eda8ac2c0940a0e58fe429e3d826157e2460c30e8

  • SSDEEP

    1536:UB7crF7FePF5tZuEqdPUq0aJb9sqx3CjrM3XQuWIr8UmoIYuOVje+ZNne:URQFet5O7dPr0oSwyjr4XQuDnmrYuOVA

Score
10/10

Malware Config

Extracted

Family

gafgyt

C2

173.232.146.170:4849

Targets

    • Target

      7ed14c3e540ac81411c52b068ea450fd

    • Size

      83KB

    • MD5

      7ed14c3e540ac81411c52b068ea450fd

    • SHA1

      378caf533b6696a6e67f2b3b3b78fe96f3f8bf36

    • SHA256

      e96ecfc52cb2ca8fe12a02acb6092901e32ba86070732358f40f42b3cd5acd92

    • SHA512

      21d43e4f84556918e587f643997bfcc0e061e5ca3fa46d6f1dba912708f35b6dc0b8cc272e012c848bfd548eda8ac2c0940a0e58fe429e3d826157e2460c30e8

    • SSDEEP

      1536:UB7crF7FePF5tZuEqdPUq0aJb9sqx3CjrM3XQuWIr8UmoIYuOVje+ZNne:URQFet5O7dPr0oSwyjr4XQuDnmrYuOVA

    Score
    6/10
    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks