Overview

overview

10

Static

static

10

96c1c80ecc...62.elf

ubuntu-18.04-amd64

96c1c80ecc...62.elf

debian-9-armhf

96c1c80ecc...62.elf

debian-9-mips

96c1c80ecc...62.elf

debian-9-mipsel

Sharing

Copy URL Twitter E-mail

General

  • Target

    6ecc598768c5a00c29269ea8e7ef72b3.bin

  • Size

    62KB

  • MD5

    00844367329645ad7cda5518b9b334e7

  • SHA1

    0b90fc27f9c17a281a31a4104c72a1feee9f0ffb

  • SHA256

    0437cf4705f2e2893297a5303e81769dd7f91f7af3f61c9875d43a0d5f6fa7f9

  • SHA512

    5e8d8bc0b9649c1d38f74151936f72851498400fd1d6a0f5c076b7089d4da2dd9c64668b70ff2cf02ce358025f713474e74b24086111104e13e9d7637d3373fe

  • SSDEEP

    1536:jgBUApIPPw/lOkhrI5RcLkoO16TTx+sJ1e:jgtlru5+LSU3x+j

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

45.95.169.138:322

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • 6ecc598768c5a00c29269ea8e7ef72b3.bin
    .zip

    Password: infected

  • 96c1c80ecc2f05b1bbceecec43319ce45231db3fd747f79ad25c6f672feef762.elf
    .elf linux ppc