gafgyt | 0ec2e5deabf9751adbfe71c34c576162[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0ec2e5deabf9751adbfe71c34c576162.bin
Size

56KB
MD5

c9c257fd6c1a4eb04938648037a7560b
SHA1

a5982382da4f0aba4ea10b3da3d2261de72ad576
SHA256

29edf1a0c69c3ed9f5ad1453acab9ae2dcdb09fbc206b2d7995a200846af4c38
SHA512

10a2a62d1f2f3ad6fe801fd6882912a0093ad11db58d6e38ee8555b587e86a01f268cfed43eec76ea4a9c772f6a8d0130f5f57d9f2f0dde13e6a865ff9aa4248
SSDEEP

1536:wch3wAHCQIZaTlxPsHy+JFiWnAPNxR28q:NhXHCuD2iWAfgF

Score

10^/10

gafgyt

Malware Config

Extracted

Family

gafgyt

C2

85.239.55.70:515

Signatures

Detected Gafgyt variant 1 IoCs

resource	yara_rule
static1/unpack001/9c7f1fd869cf1ab94b4f2e55f3626293de4fd52dcbd52b04b3075e01cc76c28d.elf	family_gafgyt

Gafgyt family
gafgyt

Files

0ec2e5deabf9751adbfe71c34c576162.bin
.zip

Password: infected
9c7f1fd869cf1ab94b4f2e55f3626293de4fd52dcbd52b04b3075e01cc76c28d.elf
.elf linux mipsbe