Overview

overview

10

Static

static

10

f363caea0c...4f.elf

ubuntu-18.04-amd64

f363caea0c...4f.elf

debian-9-armhf

f363caea0c...4f.elf

debian-9-mips

f363caea0c...4f.elf

debian-9-mipsel

Sharing

Copy URL Twitter E-mail

General

  • Target

    200ba7ac259bbfb803a31e3ec75f3625.bin

  • Size

    39KB

  • MD5

    be170a990f883c5990273fa0939d49e5

  • SHA1

    c9b856382a9b008b4a6e8b08e410ce159f3db794

  • SHA256

    662f0530c3280f0bb04178c2fbacf3dcc17cf34d2161c76f6ab0de18213cebbf

  • SHA512

    ecf8d1552266813f211e63cbe029abd6337847c221e4a44a06147a1249416d7ea16232b153da083878c98e3016ba1a0721f09c9834e1c530f44b354a84646815

  • SSDEEP

    768:ZnKTho01WETXyGvvwy8G1pIend4ffLNXjOuWUlje2Z02n:9KTmETCGwy3nKjOQe2L

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

193.233.252.242:4258

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • 200ba7ac259bbfb803a31e3ec75f3625.bin
    .zip

    Password: infected

  • f363caea0c35f9af62824fac02dd33948a5c98ddc2b788fec7ce777f0a2fad4f.elf
    .elf linux ppc