gafgyt | d6bad7130a22948b5d5de02f333515d0[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d6bad7130a22948b5d5de02f333515d0.bin
Size

53KB
MD5

f33bebba80c0492fbc79ec0d7a494b04
SHA1

a3f00c43d0ed9c38ab7f8d9613478c6e924e1c64
SHA256

9c167fdcc91395339f017a66f9b178d7a4ae68494a6bfa74bbd0e633b9811d48
SHA512

47c3f3fd21093dec001037c3e92e31793d6a7ff07a4f3fbcda7d68b58bd2cc743b5771f4c71f8e5f11774ce7ce9368354f25bf581d66e5f73f9cf9bd88d29e63
SSDEEP

1536:dvKIXqAdVyBfC8SRH5JrOp6uinxDIlH0XoXRDoH:dvKIXHGBfCRRZwbinxliDoH

Score

10^/10

gafgyt

Malware Config

Extracted

Family

gafgyt

C2

147.185.221.19:30455

Signatures

Detected Gafgyt variant 1 IoCs

resource	yara_rule
static1/unpack001/e78fc5c12dda75bad2cb782453bec1460a0e812442f84dd1491c39cd5aec54af.elf	family_gafgyt

Gafgyt family
gafgyt

Files

d6bad7130a22948b5d5de02f333515d0.bin
.zip

Password: infected
e78fc5c12dda75bad2cb782453bec1460a0e812442f84dd1491c39cd5aec54af.elf
.elf linux mipsbe