gafgyt | 08e4519fa9c411a813f3890b6f6c3bb97b78112aa3eeec0572838f19fe0fe58c | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

08e4519fa9...8c.elf

debian-9-mipsel

6

Sharing

General

Target

08e4519fa9c411a813f3890b6f6c3bb97b78112aa3eeec0572838f19fe0fe58c.elf
Size

183KB
Sample

240213-c5tnhsdb45
MD5

4bdb71ea1cf5a9936f53eafb06cc6ae7
SHA1

59e2e5920a05a16b694f70e8d5e125c0952e2fff
SHA256

08e4519fa9c411a813f3890b6f6c3bb97b78112aa3eeec0572838f19fe0fe58c
SHA512

2de4e7d18fe8a0030e3da501eddac0532676437b218f5a64dc0e016761bac87c10b51c53e0f9d5c3cc4899818cb5f6f65c91525e14626e7ce8f61ce46d12f189
SSDEEP

3072:aaF7XSy6Cv9RDe5hCs1ZQhmv8uqx1BVnKoe:aICGVFe5hCZhmv8uqx1BVnKoe

Score

10^/10

gafgyt

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

08e4519fa9c411a813f3890b6f6c3bb97b78112aa3eeec0572838f19fe0fe58c.elf

Resource

debian9-mipsel-20231215-en

debian-9-mipsel

2 signatures

150 seconds

Malware Config

Extracted

Family

gafgyt

C2

45.95.169.103:2545

Targets

- Target
  
  08e4519fa9c411a813f3890b6f6c3bb97b78112aa3eeec0572838f19fe0fe58c.elf
- Size
  
  183KB
- MD5
  
  4bdb71ea1cf5a9936f53eafb06cc6ae7
- SHA1
  
  59e2e5920a05a16b694f70e8d5e125c0952e2fff
- SHA256
  
  08e4519fa9c411a813f3890b6f6c3bb97b78112aa3eeec0572838f19fe0fe58c
- SHA512
  
  2de4e7d18fe8a0030e3da501eddac0532676437b218f5a64dc0e016761bac87c10b51c53e0f9d5c3cc4899818cb5f6f65c91525e14626e7ce8f61ce46d12f189
- SSDEEP
  
  3072:aaF7XSy6Cv9RDe5hCs1ZQhmv8uqx1BVnKoe:aICGVFe5hCZhmv8uqx1BVnKoe
Score

6^/10
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy