gafgyt | b657ddda6458d27a450a6b590094196b[.]bin | Triage

Sharing

General

Target

b657ddda6458d27a450a6b590094196b.bin
Size

60KB
MD5

1bbcc270f2fbbb3d759da7115d8b704b
SHA1

90758f23fa47fe8eb0dd6270db391d6d9f694d23
SHA256

ff768446fd68db341c6ab4f5d834aa25736cd3030310814edabcdd0ffed0e02b
SHA512

d73a023bda23439492b4258ed25f5585b69610dcae276739ebb1d52a19cf4353f03fd063953f25c9bb8cbf17210f45215d42d8d61a20beaf4f757ede74482033
SSDEEP

1536:8UQNhZNXEVaxCMznf6Mi8e4NQlJ84LFlAuspFzhlZ71:8JZNX/IMrYGmvAFpFdZ

Score

10^/10

gafgyt

Malware Config

Extracted

Family

gafgyt

C2

45.88.90.17:4444

Signatures

Detected Gafgyt variant 1 IoCs

resource	yara_rule
static1/unpack001/5e8977af888cdef7036f928e02cc54c89c6cea94cac11d420f543087e4938545.elf	family_gafgyt

Gafgyt family
gafgyt

Files

b657ddda6458d27a450a6b590094196b.bin
.zip

Password: infected
5e8977af888cdef7036f928e02cc54c89c6cea94cac11d420f543087e4938545.elf
.elf linux x64