gafgyt | 58d078cce74e6611713e83ae8ee0d7ae03950672ffcf5fdfbf10cd6a960a1810 | Triage

Submit
Reports

Overview

overview

Static

static

58d078cce7...10.elf

debian-9-mips

7

Sharing

General

Target

58d078cce74e6611713e83ae8ee0d7ae03950672ffcf5fdfbf10cd6a960a1810.elf
Size

151KB
Sample

240316-cvnphsbd78
MD5

bcc74c0cf01b94173f9c31489a8b7c0f
SHA1

03dbdc51c6f2bc432fa5b22ea9e949289ccc12e4
SHA256

58d078cce74e6611713e83ae8ee0d7ae03950672ffcf5fdfbf10cd6a960a1810
SHA512

7b1301ec77f84e5afe89c64d3890daa1d20e591d3cd3feea0e0aaee43cdcfd29c5c53e104f0e0e4293fe6fa316d764cc910d760a33b65e29f915cc9cc9154c63
SSDEEP

3072:JW6dm9tS1aRGQdK76t/zC9I5mrThPaLEnvPrNb:c6IG+LCCmrThPaLEnvPrNb

Score

10^/10

gafgyt

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

58d078cce74e6611713e83ae8ee0d7ae03950672ffcf5fdfbf10cd6a960a1810.elf

Resource

debian9-mipsbe-20240226-en

debian-9-mips

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  58d078cce74e6611713e83ae8ee0d7ae03950672ffcf5fdfbf10cd6a960a1810.elf
- Size
  
  151KB
- MD5
  
  bcc74c0cf01b94173f9c31489a8b7c0f
- SHA1
  
  03dbdc51c6f2bc432fa5b22ea9e949289ccc12e4
- SHA256
  
  58d078cce74e6611713e83ae8ee0d7ae03950672ffcf5fdfbf10cd6a960a1810
- SHA512
  
  7b1301ec77f84e5afe89c64d3890daa1d20e591d3cd3feea0e0aaee43cdcfd29c5c53e104f0e0e4293fe6fa316d764cc910d760a33b65e29f915cc9cc9154c63
- SSDEEP
  
  3072:JW6dm9tS1aRGQdK76t/zC9I5mrThPaLEnvPrNb:c6IG+LCCmrThPaLEnvPrNb
Score

7^/10
- Changes its process name
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy