gafgyt | e2ca76a3d4a51aa9fc1f0eb8943e886876a70ec80534af9685683426be59e717 | Triage

Submit
Reports

Overview

overview

Static

static

e2ca76a3d4...17.elf

debian-9-mips

7

Sharing

General

Target

e2ca76a3d4a51aa9fc1f0eb8943e886876a70ec80534af9685683426be59e717.elf
Size

155KB
Sample

240223-gdgbbscf62
MD5

2efc897ea0e1c4cf156506f598e2cac9
SHA1

c056f0536cc81194d0d0b74afb5013d43daaca1e
SHA256

e2ca76a3d4a51aa9fc1f0eb8943e886876a70ec80534af9685683426be59e717
SHA512

136f0ddcdb18fc17364f64330a7a99a72aa68f15a0f7ae18d529e75eb65be55b41782937c2790f02dcce31605a603cc5be8f90499dcbdd6042cea2c2ec78627d
SSDEEP

3072:B7esBFP23rWfOB7ZOOyGOWKmrThPaLEne7rNb:1euCloGOrmrThPaLEne7rNb

Score

10^/10

gafgyt

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

e2ca76a3d4a51aa9fc1f0eb8943e886876a70ec80534af9685683426be59e717.elf

Resource

debian9-mipsbe-20240221-en

debian-9-mips

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  e2ca76a3d4a51aa9fc1f0eb8943e886876a70ec80534af9685683426be59e717.elf
- Size
  
  155KB
- MD5
  
  2efc897ea0e1c4cf156506f598e2cac9
- SHA1
  
  c056f0536cc81194d0d0b74afb5013d43daaca1e
- SHA256
  
  e2ca76a3d4a51aa9fc1f0eb8943e886876a70ec80534af9685683426be59e717
- SHA512
  
  136f0ddcdb18fc17364f64330a7a99a72aa68f15a0f7ae18d529e75eb65be55b41782937c2790f02dcce31605a603cc5be8f90499dcbdd6042cea2c2ec78627d
- SSDEEP
  
  3072:B7esBFP23rWfOB7ZOOyGOWKmrThPaLEne7rNb:1euCloGOrmrThPaLEne7rNb
Score

7^/10
- Changes its process name
- Executes dropped EXE
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy