General

  • Target

    8995957c2614eba3398d77b794e39872.elf

  • Size

    94KB

  • Sample

    240402-rjzpzach49

  • MD5

    8995957c2614eba3398d77b794e39872

  • SHA1

    af64d736739ccd2ff5aa4e381b18d55af0a36dd0

  • SHA256

    c002e77a1448c0826f3373a10ee2eb130ce17fc7ab1a048feb84571a01f34411

  • SHA512

    077114f295ceecb1cdda33f16686eac02460fe74928c8605a29aef2c80254c6edb94c558a8b375852d15ec3bc625a9ba0f9707c0f827b377126c582995bbcf40

  • SSDEEP

    1536:m17zwmvmJuvDM17i3micBiXbKwaBTDhotj+U3GMNcLUYDigEEamoHMurMhs9hZfH:CXmJmD82mFiXbDCdotj+AGMSDiJEamkd

Score
10/10

Malware Config

Extracted

Family

gafgyt

C2

141.98.7.37:65480

Targets

    • Target

      8995957c2614eba3398d77b794e39872.elf

    • Size

      94KB

    • MD5

      8995957c2614eba3398d77b794e39872

    • SHA1

      af64d736739ccd2ff5aa4e381b18d55af0a36dd0

    • SHA256

      c002e77a1448c0826f3373a10ee2eb130ce17fc7ab1a048feb84571a01f34411

    • SHA512

      077114f295ceecb1cdda33f16686eac02460fe74928c8605a29aef2c80254c6edb94c558a8b375852d15ec3bc625a9ba0f9707c0f827b377126c582995bbcf40

    • SSDEEP

      1536:m17zwmvmJuvDM17i3micBiXbKwaBTDhotj+U3GMNcLUYDigEEamoHMurMhs9hZfH:CXmJmD82mFiXbDCdotj+AGMSDiJEamkd

    Score
    6/10
    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks