Overview

overview

10

Static

static

10

249218745e...8f.elf

ubuntu-18.04-amd64

249218745e...8f.elf

debian-9-armhf

249218745e...8f.elf

debian-9-mips

249218745e...8f.elf

debian-9-mipsel

Sharing

Copy URL Twitter E-mail

General

  • Target

    642e87c1b3e5ee0356e5c0f470d7865f.bin

  • Size

    44KB

  • MD5

    8211ca0ad7ea1c61ef8e1acebcbb9dfd

  • SHA1

    e0dcdaeab96b8ec8bd45986b9fb7e98fe313b101

  • SHA256

    5963319249665159444ba25c0a03ca54cd003f6a7cdaf3eece815bcdba8ed03f

  • SHA512

    8a463df58b9984dfc1ac7b5c942a21be78dd662e54b1cdda66c5ba1ce9337c2bed826e5e89ee754671e5d8703317e01535363f3444578535877ae71f3249bd97

  • SSDEEP

    768:PlJrYAhoz4toCRPED0MZQbF3FlSkaU3ekGHhbLOlfI5dRkCPsqqDG4NmQ:PllVocpRPMk13evGIhxRqDZNmQ

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

185.196.8.31:76

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • 642e87c1b3e5ee0356e5c0f470d7865f.bin
    .zip

    Password: infected

  • 249218745ec317c9e9faa39280ff2ca561f138dba755111658c6d55b83a1f08f.elf
    .elf linux