gafgyt | fuckjewishpeople[.]arm5[.]elf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fuckjewishpeople.arm5.elf
Size

116KB
MD5

3540273b3dd29a858deb89b8436cc568
SHA1

6392edc734024eab8d14792c0f132614e4535411
SHA256

c8d9eb63b14dc9ce887097b42ddd6808a85ed8ca27c06774481ce7a9ea5dbb47
SHA512

b300a4f889c280740ff12e2dd5796c5fb732b762551d8f0fc3db6ba7cd56618bad7694975c5670865809669d443aeb3e560cac84fc5c68ed716957b8ce33d79c
SSDEEP

3072:idwracAAviNmLpMQ1xN5hKHKrrbqlAWmyDQUJ1UX4Tn:SwraFgikxN5hKHKulAWmyDQUJ1a4Tn

Score

10^/10

gafgyt

Malware Config

Extracted

Family

gafgyt

C2

103.153.69.150:4258

Signatures

Detected Gafgyt variant 1 IoCs

resource	yara_rule
sample	family_gafgyt

Gafgyt family
gafgyt

Files

fuckjewishpeople.arm5.elf
.elf linux arm