Overview

overview

10

Static

static

10

1674d3517c...6a.elf

ubuntu-18.04-amd64

1674d3517c...6a.elf

debian-9-armhf

1674d3517c...6a.elf

debian-9-mips

1674d3517c...6a.elf

debian-9-mipsel

Sharing

Copy URL Twitter E-mail

General

  • Target

    fde2d8811c86d9d608d03efb820bb79b.bin

  • Size

    45KB

  • MD5

    8c88c35b207d60a61e8449aab7831fc7

  • SHA1

    376717429d399a9921f85e2136c7c6710421272e

  • SHA256

    7ff387d7282c07b1dedff4e99f6c9aa8b2e7c42727d258e52fd9e1605a7db3d6

  • SHA512

    bfdffe4652aae02e2783af1013489907b4c697afff9141f76930b97259b3e57fbe25b56f4d15c4672b27fcb49f17b939881c81a4a9ac706a7b58b211633f0788

  • SSDEEP

    768:O+y4ZBWHR5VDVRoKBpfVf/QQNs7v2NExsTSHPmcU+RJHiCPShb1UcZIVASf60zPM:BYHRfVRoutf/jNsIEk2PM+RZvPYbicBp

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

5.253.246.39:666

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • fde2d8811c86d9d608d03efb820bb79b.bin
    .zip

    Password: infected

  • 1674d3517c3b8c5dbd9f6e45cbd86617ed32c8d21b864409733c63bdf76ade6a.elf
    .elf linux ppc