General

  • Target

    7867376ceed24a8466e6517e4f3e580069f76d92c980cf62f4f9a998791a6381.elf

  • Size

    135KB

  • Sample

    240605-skx37sae4t

  • MD5

    8dc38b043a4d67753c43a853389a168c

  • SHA1

    621c1ad4b577c11231d022c2e6384fafbbfe3008

  • SHA256

    7867376ceed24a8466e6517e4f3e580069f76d92c980cf62f4f9a998791a6381

  • SHA512

    2d2c756de6f5ffa58893e25d61dfcc50d314f6be5a3358d67c5b2cea431925ff6d4ed68e6861753443bc07e68faa0cdea925154858a0991cc9f16cc036233a16

  • SSDEEP

    3072:S/Y7jUsUqUZUfU6mUTDkMVw3Zny/uqlx6DXVm5h2nHnnTx9xqjmJswdytNr9:SAbvcc8yDkMVw3Quqf6DXw5h2HnTWmJK

Score
10/10

Malware Config

Extracted

Family

gafgyt

C2

45.95.169.201:4444

Targets

    • Target

      7867376ceed24a8466e6517e4f3e580069f76d92c980cf62f4f9a998791a6381.elf

    • Size

      135KB

    • MD5

      8dc38b043a4d67753c43a853389a168c

    • SHA1

      621c1ad4b577c11231d022c2e6384fafbbfe3008

    • SHA256

      7867376ceed24a8466e6517e4f3e580069f76d92c980cf62f4f9a998791a6381

    • SHA512

      2d2c756de6f5ffa58893e25d61dfcc50d314f6be5a3358d67c5b2cea431925ff6d4ed68e6861753443bc07e68faa0cdea925154858a0991cc9f16cc036233a16

    • SSDEEP

      3072:S/Y7jUsUqUZUfU6mUTDkMVw3Zny/uqlx6DXVm5h2nHnnTx9xqjmJswdytNr9:SAbvcc8yDkMVw3Quqf6DXw5h2HnTWmJK

    Score
    6/10
    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks