General

  • Target

    assailant.arm5.elf

  • Size

    176KB

  • MD5

    09437f05633c1499431a68089ce17a35

  • SHA1

    743207d94bb12672ed2308dba790726d2e0c9e7c

  • SHA256

    4d8c463e068c7904d540e8a8d7849f892aa73685d1a2b768eb6a4b66ce43b05a

  • SHA512

    5451600e9a081a71ff3c78a6c5c93fc903ca4e7d473960534e526f4306038ab60d3d465dd5180aec002b9373e1061287933ccea0126b3eb923ad8d12a86c6382

  • SSDEEP

    3072:EV/Yb/dnp+eQPGJ+OHT+aDfn/uyR6F2bEbD1ILm4B5LQk3ndwjV7cjlrmmw3Bq/b:d+2+aDfn/9R6FX1I9B5LQk3ndwjV7cJ9

Score
10/10

Malware Config

Extracted

Family

gafgyt

C2

103.54.153.94:42516

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family

Files

  • assailant.arm5.elf
    .elf linux arm