Overview

overview

10

Static

static

10

3137c75fab...8d.elf

ubuntu-18.04-amd64

3137c75fab...8d.elf

debian-9-armhf

3137c75fab...8d.elf

debian-9-mips

3137c75fab...8d.elf

debian-9-mipsel

Sharing

Copy URL Twitter E-mail

General

  • Target

    8db848603fb4a7cd6e596568c504a79b.bin

  • Size

    48KB

  • MD5

    b0eba1bd5a4a6349da75095a25a70e07

  • SHA1

    f00eb5be3c7f0a43ff449eab57316d50a5d5a52c

  • SHA256

    6bce371f7a39a50bb3be18e31ef58b9cbf7845076ddad1532c439199293e166f

  • SHA512

    c866f1488597b609da4527387f14914915aa054fc4619fe16c26ea97e55ed5092c6f46e1c88ac6a0953531b7c27353dac8f891215461064d1f588bdfbd6eb2af

  • SSDEEP

    768:CioQOrxVg17vLe/gLbsguFPcqIOdWe+/jMr8Yevtt9kAjSXuZNFsCZ5pzl:CvxV2vLeeuFcwB+wIYelXkNuZNFDZ5hl

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

176.97.114.45:666

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • 8db848603fb4a7cd6e596568c504a79b.bin
    .zip

    Password: infected

  • 3137c75fab2df7ae7f75b5330d6cfc54af9c211054afd2f42f27b166d18b388d.elf
    .elf linux sparc