Overview

overview

10

Static

static

10

8d64ef22a1...fb.elf

debian-12-armhf

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    8ba65485f5bb43e5651b4488905f8667.bin

  • Size

    41KB

  • MD5

    f33379e0b1288ac82d2f1a41057bc567

  • SHA1

    d39dd0a9b45e8174c13e4ee4feffe1d92e46f877

  • SHA256

    02a1932c4a9f994cd520b4781422e6278a16c450261580851395d5d905e4d691

  • SHA512

    5b37e6cf119a963d48871d54f86b102b57fc29736d98e7e67e39a986f8821af579fad7ae747e5b905536cc472080ce9ec9a9d65d577bf3943984e92bd09ef87b

  • SSDEEP

    768:jyuXxstoZQVaWSuAScH65tbc1Q4Coj7PHS8Rk3lBYSeRz6iz8bVINWDb7/6Y8:jyuBstoZ0uJzH6V45nPHk3NeRzIRvnDs

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

94.156.8.9:23

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • 8ba65485f5bb43e5651b4488905f8667.bin
    .zip

    Password: infected

  • 8d64ef22a1805863a05b8e0db599032f5c05d401d6b9a1ce3c3fa4b06a4b44fb.elf
    .elf linux arm