gafgyt | 78a6aafa14600c1f6c1a45f4c9435d73[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

78a6aafa14600c1f6c1a45f4c9435d73.bin
Size

53KB
MD5

af1dfcdaf6546ff60e3b1562f5a735bf
SHA1

1ed58c31577709bb01e9d70f989e60abc637da9b
SHA256

32e416f09a11b22f72765c571a1b80a46bf339b2f3e9cd11917560092ef3a2e8
SHA512

69af8518215024b4e98a2dbec3c9677e6fef2a9ac0315504672b7b0359b91f221f271e0b8d47986ed8bbce6b540d4d7448e3d17890685437908ce1e6979aeff2
SSDEEP

1536:4KSnvtsNygCv8RaH070u2UL6NgwnGZ6R4:JeGj4UH2UKGT

Score

10^/10

gafgyt

Malware Config

Extracted

Family

gafgyt

C2

103.153.69.150:839

Signatures

Detected Gafgyt variant 1 IoCs

resource	yara_rule
static1/unpack001/7670cd2609ce47df10b3112cf8229e26db950fd6f4accbe4e3ac730078bc94d7.elf	family_gafgyt

Gafgyt family
gafgyt

Files

78a6aafa14600c1f6c1a45f4c9435d73.bin
.zip

Password: infected
7670cd2609ce47df10b3112cf8229e26db950fd6f4accbe4e3ac730078bc94d7.elf
.elf linux arm