Overview

overview

10

Static

static

10

fe197cf93b...aa.elf

ubuntu-18.04-amd64

fe197cf93b...aa.elf

debian-9-armhf

fe197cf93b...aa.elf

debian-9-mips

fe197cf93b...aa.elf

debian-9-mipsel

Sharing

Copy URL
Twitter E-mail

General

  • Target

    11c9c64440a7f4f341783b97ae32d9c5.bin

  • Size

    47KB

  • MD5

    d1b9221795bd7683d6b87da938145012

  • SHA1

    ef361ad77f30a5b5a39ebcb76b36392957ad214f

  • SHA256

    6289c8f7ed0d3c71c437296691234651b855d70aed39aef6a3534fc203f413aa

  • SHA512

    1b4a5f2be32c0effd3f8070bd4ce1c7bd3d2f8030b7188521bd5d54352196ed2b92e87c7e61fb8c86d787ff79334e70fed99b0efc4fd2719593dafaba211d11d

  • SSDEEP

    768:JyDadyRcJCfBuPgbYRtwVKWoVIR85quDQQcGdtFUa8aA7HOU/kUQWfQtc1SSiCli:oDaLJCZigbI6efN/nuZaA7uU/kkfQVSw

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

95.174.91.180:4258

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • 11c9c64440a7f4f341783b97ae32d9c5.bin
    .zip

    Password: infected

  • fe197cf93bf3aae8a157fb0cb07f7bba83cf02cfb785c2ffffdcf578bc93daaa.elf
    .elf linux ppc