General

  • Target

    d7497d89fe0f5eb13976ad927062b337.elf

  • Size

    83KB

  • Sample

    240402-rfjjkscg39

  • MD5

    d7497d89fe0f5eb13976ad927062b337

  • SHA1

    935950cd86f88cbcbc1c814f74c42f9e27f526fc

  • SHA256

    0ca62d10756cf924403ad940777ae8582d450002d7c10d1687cc158b736d76ff

  • SHA512

    d219ff583b7849fe272ce71264b45781ad2c48ae0694a43be746b032a831c813fdd12253e6daa770698f950aa66f16fad5de75020ff52010669aeeff3a24485a

  • SSDEEP

    1536:SppgTcvoo3CQWRaTMPIl6/HRb8opNqlf8vomLHUVr4wsgDfB26:PTcwoYk4PIlAHOINqDmzUVr4wZDfB26

Score
10/10

Malware Config

Extracted

Family

gafgyt

C2

141.98.7.37:65480

Targets

    • Target

      d7497d89fe0f5eb13976ad927062b337.elf

    • Size

      83KB

    • MD5

      d7497d89fe0f5eb13976ad927062b337

    • SHA1

      935950cd86f88cbcbc1c814f74c42f9e27f526fc

    • SHA256

      0ca62d10756cf924403ad940777ae8582d450002d7c10d1687cc158b736d76ff

    • SHA512

      d219ff583b7849fe272ce71264b45781ad2c48ae0694a43be746b032a831c813fdd12253e6daa770698f950aa66f16fad5de75020ff52010669aeeff3a24485a

    • SSDEEP

      1536:SppgTcvoo3CQWRaTMPIl6/HRb8opNqlf8vomLHUVr4wsgDfB26:PTcwoYk4PIlAHOINqDmzUVr4wZDfB26

    Score
    6/10
    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks