General

  • Target

    2bfa5d1cb17c258a5e34c1abcbd6bc89.elf

  • Size

    183KB

  • Sample

    240331-hj84zafd9v

  • MD5

    2bfa5d1cb17c258a5e34c1abcbd6bc89

  • SHA1

    ac8b951aba38585a1943fa26e4e953936b6c4876

  • SHA256

    bb0ace1f379450a995fe7deaefc54d05606d704a5d3def0db1e63f9890e204ef

  • SHA512

    00c059e6d39bc1ee11b362a6db7faddf32a0a6c45a86b50970752def5a4c2392f0dca587ef6f4addf15176a5068578ddbf46ef0b01f82618dfe6d8e9714313e4

  • SSDEEP

    3072:aaF7XSy6Cv9RDJ5hCs1ZQhmv8uqx1BVnKoe:aICGVFJ5hCZhmv8uqx1BVnKoe

Score
10/10

Malware Config

Extracted

Family

gafgyt

C2

103.35.190.189:666

Targets

    • Target

      2bfa5d1cb17c258a5e34c1abcbd6bc89.elf

    • Size

      183KB

    • MD5

      2bfa5d1cb17c258a5e34c1abcbd6bc89

    • SHA1

      ac8b951aba38585a1943fa26e4e953936b6c4876

    • SHA256

      bb0ace1f379450a995fe7deaefc54d05606d704a5d3def0db1e63f9890e204ef

    • SHA512

      00c059e6d39bc1ee11b362a6db7faddf32a0a6c45a86b50970752def5a4c2392f0dca587ef6f4addf15176a5068578ddbf46ef0b01f82618dfe6d8e9714313e4

    • SSDEEP

      3072:aaF7XSy6Cv9RDJ5hCs1ZQhmv8uqx1BVnKoe:aICGVFJ5hCZhmv8uqx1BVnKoe

    Score
    6/10
    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks