Overview

overview

10

Static

static

10

70ee38e442...60.elf

ubuntu-18.04-amd64

70ee38e442...60.elf

debian-9-armhf

70ee38e442...60.elf

debian-9-mips

70ee38e442...60.elf

debian-9-mipsel

Sharing

Copy URL Twitter E-mail

General

  • Target

    b55b1cd7a8a75a0b390438489d6f4b88.bin

  • Size

    41KB

  • MD5

    8bd921d503df185d21df4bfc0ddfe4e3

  • SHA1

    48d8aa3c51f6eb44b6c8681967264f8a803b41c1

  • SHA256

    25a2f154438604769cc2e3f9f394d0715f72123b603db6346869c4d26c2c0666

  • SHA512

    0142b61773d40b9430c5aa9d27f0435d4ae930cf7023581fe59b778ac528324cbf294bb33dee22d81ab4dbc1c82cf9d651246d805e4b3c4e1d857b3e3dedd366

  • SSDEEP

    768:wqFs5Y17aFDHlL5diy6nJgWtIjecE7FI3GdmwRXnrmzADrNgmgIHV65:hFs5Z7PIJgDsy3GdnR3rmzcgzI165

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

103.173.255.143:839

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • b55b1cd7a8a75a0b390438489d6f4b88.bin
    .zip

    Password: infected

  • 70ee38e442eca20ab577211da07e26da4d15e0aae95e2dc60114f71a155b7b60.elf
    .elf linux ppc