Overview

overview

10

Static

static

10

f64a0b4bbd...e9.elf

ubuntu-18.04-amd64

f64a0b4bbd...e9.elf

debian-9-armhf

f64a0b4bbd...e9.elf

debian-9-mips

f64a0b4bbd...e9.elf

debian-9-mipsel

Sharing

Copy URL Twitter E-mail

General

  • Target

    c622f3a39c3aab235d9faa8aa3a34c92.bin

  • Size

    42KB

  • MD5

    22e96e33363e858be75445fb44535514

  • SHA1

    0802894098676143987ffab0f28bac2517223da9

  • SHA256

    85c41d9a6fe69fc51eff842ceea08b9f62b78710b1e596a67bfc5372ba07ca0a

  • SHA512

    7ff65cdad57d9986a63088ad264d579f11b42cc7b4409641ecb43e4c0f8236163e66d6830514bedabf2ad6124d61d06bc0e1f034515edb4a0a0b8962083f09bf

  • SSDEEP

    768:iZwqkcADFoKePY9ktrROK1o6Z+kvvig5kIeKal/ez0479ay0oIpQCGUeaKimBAEj:SwqU/9MFG6MS1kj/80Y86IPGAK

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

89.190.156.227:23

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • c622f3a39c3aab235d9faa8aa3a34c92.bin
    .zip

    Password: infected

  • f64a0b4bbdbe56f5d44e9a3442fed38c775cd755ac29c7263d3fe7a0a8937ae9.elf
    .elf linux ppc