gafgyt | 25e8525d8db8e441b7555722674b3101[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

25e8525d8db8e441b7555722674b3101.bin
Size

50KB
MD5

6839cb325afcb4ded00e291125519d27
SHA1

aefcd7598e34760359cac3e3d94b9a91b8204fda
SHA256

aa348f505274cf3f8b0c2d4fcde510b6c15fd809ebfab91758c82eeadbd0d132
SHA512

c174254f8ac5bb30f9c8d309c8767dff6f1ba27a9f4e7ae3c3d8b6669c92643c572937a5ed91ffcf2c2dd64f5f5f63542ef5d0673c09b63ee1ca4653bb0a3bd4
SSDEEP

1536:XFZEl5lNfoHj05J8jsZjyEGqWja1KzhEbaveT:ol5luSOsZdGe1KtEbag

Score

10^/10

gafgyt

Malware Config

Extracted

Family

gafgyt

C2

5.253.246.39:666

Signatures

Detected Gafgyt variant 1 IoCs

resource	yara_rule
static1/unpack001/15fdc18be7925e67bd572fc128fa87570913bca3b949184e36410ef967654ef8.elf	family_gafgyt

Gafgyt family
gafgyt

Files

25e8525d8db8e441b7555722674b3101.bin
.zip

Password: infected
15fdc18be7925e67bd572fc128fa87570913bca3b949184e36410ef967654ef8.elf
.elf linux mipsbe