gafgyt | 24e55fc1bd4a03afb16a12a8cddaa56a[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

24e55fc1bd4a03afb16a12a8cddaa56a.bin
Size

53KB
MD5

ea7397f6fbfe41a86671a315e11101c6
SHA1

c03e87369c71d63531e779b23db444afe3063977
SHA256

beed24550e05ec1c5e9bef44eb5663715c79f4b03d23d30277648e0d12abcd2c
SHA512

8561619122863296c15dc3b0ecbd545febbfa53c3281a5a8932109073610e1088064271ceab8d84c39528ca24759ef484e953d8de40126097962fb4b40360d51
SSDEEP

1536:VNIrlAu/4F/2dpLhO9dsCf4sXs6cU1MLmFIkbtuF:85AT/+LgsCf4kxcwP+

Score

10^/10

gafgyt

Malware Config

Extracted

Family

gafgyt

C2

95.174.91.180:4258

Signatures

Detected Gafgyt variant 1 IoCs

resource	yara_rule
static1/unpack001/ac3b351c53a140d3c8e0ef16d1a1dab004121bbada9a24bfce1e057118519272.elf	family_gafgyt

Gafgyt family
gafgyt

Files

24e55fc1bd4a03afb16a12a8cddaa56a.bin
.zip

Password: infected
ac3b351c53a140d3c8e0ef16d1a1dab004121bbada9a24bfce1e057118519272.elf
.elf linux mipsbe