gafgyt | 492dcfdcc9fc961fce21720bf0908459[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

492dcfdcc9fc961fce21720bf0908459.bin
Size

48KB
MD5

0e08db0aa4e67ca66f784502db0f2cae
SHA1

d3c05beb6ba8657ce06aea13122033918a95c0af
SHA256

2358b66695c117904d46cc979d8fbd19696057c1fc205218485bf69085dd007f
SHA512

56910b7441b81e73171d957743c34a7584eacb7108559ffdf0bca23de3be678eaedc494d92785237f2a50a1c211ba6dad8a41f2c38e3ccac3e3daa0ae37dec65
SSDEEP

1536:69+eUmp6nx2GR9A3L02U+SW0ItJoAkBBEY:69RUe6roUL3Bx

Score

10^/10

gafgyt

Malware Config

Extracted

Family

gafgyt

C2

5.253.246.12:23

Signatures

Detected Gafgyt variant 1 IoCs

resource	yara_rule
static1/unpack001/f360ced15d082cf574c715b528742f8e8fb36555596fb2f5f9a22eebe7dfc62c.elf	family_gafgyt

Gafgyt family
gafgyt

Files

492dcfdcc9fc961fce21720bf0908459.bin
.zip

Password: infected
f360ced15d082cf574c715b528742f8e8fb36555596fb2f5f9a22eebe7dfc62c.elf
.elf linux arm