General

  • Target

    7c9022960554e5a116eb29ae20cff194.elf

  • Size

    204KB

  • Sample

    240331-hfrqhsga57

  • MD5

    7c9022960554e5a116eb29ae20cff194

  • SHA1

    8033148c58544adb7cc5d2d1bd77ffa44be14fa5

  • SHA256

    00f31f3727a7ec7db813787ec7aa19f3605d4705e7737ed035b2f8566f31d901

  • SHA512

    8880887ee0ae68c94c81688826cb81698e8f5d300fff393d8078d6aaf963e814dcc990644701b4bf9e745bc8592f99bca032bea603e4d1320a68deb9758b3101

  • SSDEEP

    6144:FZzyacCwXJ4DbpW0v25hbL6+uM/9Ocgym0wfB5RyAn:FZzyacCwXJ4gt5hbvf/dgym0mB5RyAn

Score
10/10

Malware Config

Extracted

Family

gafgyt

C2

103.35.190.189:666

Targets

    • Target

      7c9022960554e5a116eb29ae20cff194.elf

    • Size

      204KB

    • MD5

      7c9022960554e5a116eb29ae20cff194

    • SHA1

      8033148c58544adb7cc5d2d1bd77ffa44be14fa5

    • SHA256

      00f31f3727a7ec7db813787ec7aa19f3605d4705e7737ed035b2f8566f31d901

    • SHA512

      8880887ee0ae68c94c81688826cb81698e8f5d300fff393d8078d6aaf963e814dcc990644701b4bf9e745bc8592f99bca032bea603e4d1320a68deb9758b3101

    • SSDEEP

      6144:FZzyacCwXJ4DbpW0v25hbL6+uM/9Ocgym0wfB5RyAn:FZzyacCwXJ4gt5hbvf/dgym0mB5RyAn

    Score
    6/10
    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks