General
-
Target
ecca94847737a4a0f081c17988ed76c0.bin
-
Size
86KB
-
MD5
bb834aff9afb6b0090da9c9796c01499
-
SHA1
f0382b8284a5f1444f1fea32d15487df0027acd9
-
SHA256
6f7a749d9408be092c89658527e6c97f53fa239938c5d312eb7e12f586c86ab3
-
SHA512
b8df5909f8a20d9844e136c89927307c416244dd8839c725168096cd50ce0d056d9742127cceb8eeed8d3125f694aa2dd5298f5a40c93a12dc51f0d05346c84e
-
SSDEEP
1536:rE9f/AdRSmU0x5sy9284zjYwjsEFX1I5/H54YqE2nmX6WB+QWZ04EEqT/Si8j:0fiRUo5sy9284/pl1I5/H5462mX6WBN8
Score
10/10
Malware Config
Extracted
Family
gafgyt
C2
239.255.255.250:1900
Signatures
-
Detected Gafgyt variant 1 IoCs
-
Enemybot family
-
Gafgyt family
-
family_enemybot 1 IoCs
EnemyBot payload
Files
-
ecca94847737a4a0f081c17988ed76c0.bin
Password: infected
-
420055a9e3b1a12b033aacf335fb123dd10f99c2672c70768ba0747c3d7cb13a.elf