gafgyt | 214f776d6db3546c7189b602799ab631e9414807852c197939049fc74b746ced | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

a52ab4c6da...e61bd6

debian-9-mips

7

Sharing

General

Target

a52ab4c6daec5afa82defcc19fe61bd6
Size

158KB
Sample

231220-mrebsababm
MD5

a52ab4c6daec5afa82defcc19fe61bd6
SHA1

c24a45ab0d6b5ad67b5b9fbf784d054ab712bb21
SHA256

214f776d6db3546c7189b602799ab631e9414807852c197939049fc74b746ced
SHA512

bba37ca7db076d40347d36dfee161bd43397efba7e78af68e995156990f109d3728aef4dfa1e3a3be0e887d75a6755f1b4cd3219595564756c16ac14cde456bb
SSDEEP

3072:8C1KZ66gck5YpPt2njTgcNJvTPy0hkdJmzkDLeTeWDEi+w9Ng:DKZ7QjTlLxhkd4zkDLeTeWDEi+w9Ng

Score

10^/10

gafgyt

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

a52ab4c6daec5afa82defcc19fe61bd6

Resource

debian9-mipsbe-20231215-en

debian-9-mips

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  a52ab4c6daec5afa82defcc19fe61bd6
- Size
  
  158KB
- MD5
  
  a52ab4c6daec5afa82defcc19fe61bd6
- SHA1
  
  c24a45ab0d6b5ad67b5b9fbf784d054ab712bb21
- SHA256
  
  214f776d6db3546c7189b602799ab631e9414807852c197939049fc74b746ced
- SHA512
  
  bba37ca7db076d40347d36dfee161bd43397efba7e78af68e995156990f109d3728aef4dfa1e3a3be0e887d75a6755f1b4cd3219595564756c16ac14cde456bb
- SSDEEP
  
  3072:8C1KZ66gck5YpPt2njTgcNJvTPy0hkdJmzkDLeTeWDEi+w9Ng:DKZ7QjTlLxhkd4zkDLeTeWDEi+w9Ng
Score

7^/10
- Changes its process name
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy