gafgyt | c99b58434bf82378d0aa9abedb051fb5[.]bin | Triage

Sharing

General

Target

c99b58434bf82378d0aa9abedb051fb5.bin
Size

48KB
MD5

8692769af537f77f3625f5aebe1cc4b6
SHA1

93b81c0fb0d8b627392a719895d40a1403cff1bd
SHA256

95d5b1280cabec0b11648eeb1f1a2c886df9eea50fc8d343cf175143bc2f23bd
SHA512

3ccc866771300b60b0ea6f8222bfa528ba5fb76aa3750a00b187167a6a4f1137283e4f9fd66faa7d4516fa7c9cdd4ff70340d30364e273bc9be5a7a6cf592ebd
SSDEEP

1536:NculOXM3Ixrc0UvIyNVQMnqHUwHVEDnWEO:NcuEhxQ0C9NVlnwzQlO

Score

10^/10

gafgyt

Malware Config

Extracted

Family

gafgyt

C2

45.145.42.90:4444

Signatures

Detected Gafgyt variant 1 IoCs

resource	yara_rule
static1/unpack001/14c128c94226f8bd2866d827d374b52be3296a4c6543aa94389d3a57746af4f7.elf	family_gafgyt

Gafgyt family
gafgyt

Files

c99b58434bf82378d0aa9abedb051fb5.bin
.zip

Password: infected
14c128c94226f8bd2866d827d374b52be3296a4c6543aa94389d3a57746af4f7.elf
.elf linux sparc