Overview

overview

10

Static

static

10

2eadae3026...84.elf

debian-9-mipsel

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    03f35fb6d8beec93811a1a910d4abea2.bin

  • Size

    87KB

  • MD5

    c987013ab624a7a904ab272cb66c2d07

  • SHA1

    669272684476843cfec5aecdc6bfa23530add171

  • SHA256

    f1d33f38ea189f434263667f0f55c917588e9fd8070f95278b687d821890a505

  • SHA512

    9abd3c37ac58a25eaf6b23f4c38e41570f0ff5fedf395d90bce7a255655fd6e49859601594d3a28a5da08c37d4def7e5e36d123d84e35b0d800bd7e3b35ce07d

  • SSDEEP

    1536:3P4bNOJolC6m0SB6KfUAAyI0J2pOsCALcIjdLB6M6wL7OhNBsHq3dNRUi:3PQNvC3/6yI0Jo4IjdH6HSK3Z

Score
10/10
enemybotgafgyt

Malware Config

Extracted

Family

gafgyt

C2

239.255.255.250:1900

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Enemybot family
    enemybot
  • Gafgyt family
    gafgyt
  • family_enemybot 1 IoCs

    EnemyBot payload

Files

  • 03f35fb6d8beec93811a1a910d4abea2.bin
    .zip

    Password: infected

  • 2eadae302691a04c76a35450d89f6bb4b9ce1f3f01d811cd4c0b4013d698cc84.elf
    .elf linux mipsel