gafgyt | assailant[.]mips-20240316-0649[.]elf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

assailant.mips-20240316-0649.elf
Size

150KB
MD5

352a0ff552145cd2eb7858a94161ba75
SHA1

9be952e37f531743ea64e381ec0740bf0abdb317
SHA256

4c2c904a3161090b849f3512ce20c6f0c4183f02ccef607583692bbde5ed0b17
SHA512

14d5f682ac8f33ed8aea731c8b2e1c3fdc755e57da28eea524730bd4215bffcb8524fe48fd10755fc36650b26a95bcc9c5781a9b27f4d9c48de274cedbff085d
SSDEEP

3072:MzBM1x2GPyaT/f5hKGE6aWURxuZq+1uPNd5R:ENORf5hKGLURxuZq+1uPNd5R

Score

10^/10

gafgyt

Malware Config

Extracted

Family

gafgyt

C2

183.81.33.153:42516

Signatures

Detected Gafgyt variant 1 IoCs

resource	yara_rule
sample	family_gafgyt

Gafgyt family
gafgyt

Files

assailant.mips-20240316-0649.elf
.elf linux mipsbe