Overview

overview

10

Static

static

10

6d7a36defe...ca.elf

ubuntu-18.04-amd64

6d7a36defe...ca.elf

debian-9-armhf

6d7a36defe...ca.elf

debian-9-mips

6d7a36defe...ca.elf

debian-9-mipsel

Sharing

Copy URL Twitter E-mail

General

  • Target

    0b161903b4e40975863838bbe72cdd56.bin

  • Size

    45KB

  • MD5

    9877c0f8947064137c9d34db5aad0571

  • SHA1

    d00bc814befbea758a3f316f1f685c5d497012b4

  • SHA256

    ca697865ecaec8fa693d26ce0dd55873d2db56114efd056879113a2c29f50f0a

  • SHA512

    74f25a0d4642610d83edd4725e3669cfa8e8c27ceea8b612314eefbd739d2b047046ec794a5ef69264c3a04016731c4a7f9d4ee06fc3d9893fabbb522d9cb137

  • SSDEEP

    768:WOuYpkdOaYDW0XADouaxpS5SwuuzK/OBEiOK/tInocho:WO4z90QDouupS5SGK/OBEK1Bcho

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

94.156.79.48:23

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • 0b161903b4e40975863838bbe72cdd56.bin
    .zip

    Password: infected

  • 6d7a36defea2571e0acba87a5d2dab5eb85e900e36a02c9dfcde4ce4e1c4efca.elf
    .elf linux ppc