Overview

overview

10

Static

static

10

391c291ed4...c9.elf

debian-9-armhf

6

Sharing

Copy URL Twitter E-mail

General

  • Target

    d00924e2e25fec8b7b6fa20a3f9a5a65.bin

  • Size

    65KB

  • MD5

    d4c40b9c55b24ff0cb95d4a57ce4adcf

  • SHA1

    2f4feb86699c4acdd6eebdd42f32cfcdb0dd9143

  • SHA256

    e2d6fdd340944bc19e9043e4b37f1d814348c9c941b25acab88e30efec23a642

  • SHA512

    5f14baec7bcf156fa14afd9674c30b062ef22e40534e9562921325f678cf142bddc0d1ecea454508d13832a0a61393da619251d435be617822b47b1fc0cacb2d

  • SSDEEP

    1536:y0JgeH375LwlcDb2gv7czhWI6BflKClMADAYDYQBdR+TdQCCiw:yXeXmlo7TczhZ2fVDAxWdCq

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

93.123.85.170:4444

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • d00924e2e25fec8b7b6fa20a3f9a5a65.bin
    .zip

    Password: infected

  • 391c291ed419c852dc6372ab966d8aceb5590560df952c3f24bcc45526beabc9.elf
    .elf linux arm