gafgyt | 07a4a06b8d57373211aea74819a91cb4[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

07a4a06b8d57373211aea74819a91cb4.bin
Size

51KB
MD5

769f32d0312e98db502db564046f1173
SHA1

d13fc036294dbcc9e12045062b884306d9cb020c
SHA256

68d96dad0a9604134822afea4e55d3f4ec24320472a42e6776cc17849eb9cf2c
SHA512

f25fef6512d433d273873d066a85f8cf241b36297fbe7c9c85caabb082ad0670c727c645fb861b6c1d66bdedf29c92a49797f90cd5c8f1330998bc8d698db040
SSDEEP

1536:gbGS/jNV34xP2GwsFvLd4F4GXPhpkT1Qwy:6GSbD4xPJJFzd7CPhpk5Qwy

Score

10^/10

gafgyt

Malware Config

Extracted

Family

gafgyt

C2

93.123.85.79:4258

Signatures

Detected Gafgyt variant 1 IoCs

resource	yara_rule
static1/unpack001/1cbf19bd575dbcb99a817e4d941c90f98546419808021405948142b737f9c3b2.elf	family_gafgyt

Gafgyt family
gafgyt

Files

07a4a06b8d57373211aea74819a91cb4.bin
.zip

Password: infected
1cbf19bd575dbcb99a817e4d941c90f98546419808021405948142b737f9c3b2.elf
.elf linux arm