Overview

overview

10

Static

static

10

1aa6c5fa37...78.elf

ubuntu-18.04-amd64

1aa6c5fa37...78.elf

debian-9-armhf

1aa6c5fa37...78.elf

debian-9-mips

1aa6c5fa37...78.elf

debian-9-mipsel

Sharing

Copy URL
Twitter E-mail

General

  • Target

    613b86ac14451ce4f57f3d5139cf6bb9.bin

  • Size

    39KB

  • MD5

    8392370b045dfa1950e989739f0531d2

  • SHA1

    08853f65461584118cc3064ac486f1ca4f181328

  • SHA256

    e1ac08988cece1bf38dd8ec22ceb26a2afb3e892ffe0d60314395d21cca1990b

  • SHA512

    50d4e9280b51bab1b86c66c443f388c89b6eaa7f1ea9052df8f1b12fdf1a7069e1a8ee9d11acfefe0c343a7643cd3083d2adcbf1f9097788b03f31e7bddab887

  • SSDEEP

    768:YhAU+FlZQmti8kGKMcapOvzBTScRJvNLxQG9xMaOV5njTxvXqgQZ:1LlZQyK2Y1b1LaG9xYnjNvIZ

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

93.123.85.79:4258

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • 613b86ac14451ce4f57f3d5139cf6bb9.bin
    .zip

    Password: infected

  • 1aa6c5fa3755da6e278020bb6782df1ba3679a356792b0bae30ed9c2b9f1b478.elf
    .elf linux ppc