Overview

overview

10

Static

static

10

0fb14fe308...9d.zip

windows7-x64

1

0fb14fe308...9d.zip

windows10-2004-x64

1

07681f8022...c6.elf

debian-9-mips

6

Sharing

Copy URL Twitter E-mail

General

  • Target

    0fb14fe3086bc01b0a2720d3b3ad379d.bin

  • Size

    50KB

  • MD5

    e11d86b4884e8416f82bf2f211401d79

  • SHA1

    589b91c387e1e49bec5e8224783639c1cde33866

  • SHA256

    2d4de068a0c6c88c8da3c8b166678fbce45fb40a03a6fabc539b0cd47b44f124

  • SHA512

    f70f994f8978fd3ffe144af174dc4733b17dd3c074396eaafcebe9c8ef08411c91091c8130da3dea81ce5ee9699d1d46796dc19ec03fcd9c760f34ce40ea2146

  • SSDEEP

    768:bFFNhsAPHbcgnu+SnA7begXbeUAK2TCLhs2ALvUtQRdM0WKxHzABqPZQd+gN:LN5Hbc6XTvn2TCFsNLvUwHE+WH

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

45.145.42.90:4444

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • 0fb14fe3086bc01b0a2720d3b3ad379d.bin
    .zip .ps1 polyglot

    Password: infected

  • 07681f8022a24c6995058455c255eaf0080d44ef3f1887be0db1a682d46fc9c6.elf
    .elf linux mipsbe