General

  • Target

    b784f46d336fcbff4c3208ba0175039c.elf

  • Size

    92KB

  • Sample

    240331-hj77nsfd8w

  • MD5

    b784f46d336fcbff4c3208ba0175039c

  • SHA1

    159498b1aad42c223cc08e04ed532c6175eb4dfb

  • SHA256

    c02f1d748204d23ee9502c558e1f5c08e8fe1f0c95f12ac0ac0d7d9429dea0c1

  • SHA512

    bfedeb41a60ebb863236732756a33dd505c15b218b4aa74c62025d3fa717a6f0bc19cea393254db35e1d1d4b39f129418e7c03ea8773f534e083d38ffa86fc81

  • SSDEEP

    1536:W7uJtxNeVE8zV7aDlvhE1hmkJ0S36W6bWjK3hyPXfH0mA+KWOXFseaZYxe:4SsVEeVMlpmXJ0O6WpjKRifUm/KWOXFE

Score
10/10

Malware Config

Extracted

Family

gafgyt

C2

103.35.190.238:666

Targets

    • Target

      b784f46d336fcbff4c3208ba0175039c.elf

    • Size

      92KB

    • MD5

      b784f46d336fcbff4c3208ba0175039c

    • SHA1

      159498b1aad42c223cc08e04ed532c6175eb4dfb

    • SHA256

      c02f1d748204d23ee9502c558e1f5c08e8fe1f0c95f12ac0ac0d7d9429dea0c1

    • SHA512

      bfedeb41a60ebb863236732756a33dd505c15b218b4aa74c62025d3fa717a6f0bc19cea393254db35e1d1d4b39f129418e7c03ea8773f534e083d38ffa86fc81

    • SSDEEP

      1536:W7uJtxNeVE8zV7aDlvhE1hmkJ0S36W6bWjK3hyPXfH0mA+KWOXFseaZYxe:4SsVEeVMlpmXJ0O6WpjKRifUm/KWOXFE

    Score
    6/10
    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks