General

  • Target

    aa403af4d3595d04014d753552db95d9

  • Size

    130KB

  • MD5

    aa403af4d3595d04014d753552db95d9

  • SHA1

    97f7498bfb0c22225e870ce1021e988c7d6e546f

  • SHA256

    ac6605039982c2211c61ee912b041dd04f7cfcd1d53c841185b34e39d27d5d03

  • SHA512

    1b115fb6ebeb8a69b1dd1a8225d4ef208f789adcb574ec6819be648362d78f4ce89cc49a9d94a5c37863b1b3b8ab9afbe1f11e66faafd53d4c49de293a27f8e3

  • SSDEEP

    3072:EJ+vpNb1TI/fCetJ8add9Qzhs6e/3TyFyzKQ5CGBgBFU:EJYj2fCetJ8addQZqyFyzKQ5BBgBFU

Score
10/10

Malware Config

Extracted

Family

gafgyt

C2

209.141.42.145:812

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family

Files

  • aa403af4d3595d04014d753552db95d9
    .elf linux sh