General

  • Target

    586b10745fd2cb6c886f286a69715474ed843a6300328dab1de03f07c027b572.elf

  • Size

    141KB

  • Sample

    240702-bsvvdavejl

  • MD5

    359d47e9217c3c18f517d4b6c43846fc

  • SHA1

    caa7003cf85c8b3c7b2bd89e91b0a7c506d55f4e

  • SHA256

    586b10745fd2cb6c886f286a69715474ed843a6300328dab1de03f07c027b572

  • SHA512

    ff23d3ab4e6aaa0ba7829f240543079c45dbbe490feb13452d37293a74c5f73577482c6379140143ff42fa86e8544d638dc7e727d398627f44ae1aad4a6299d5

  • SSDEEP

    3072:sGGNZfCos2pA4FCF5hvikTam0/5ApYADn:hACyK40F5hvi9m0/5ASADn

Score
10/10

Malware Config

Extracted

Family

gafgyt

C2

37.156.29.141:4258

Targets

    • Target

      586b10745fd2cb6c886f286a69715474ed843a6300328dab1de03f07c027b572.elf

    • Size

      141KB

    • MD5

      359d47e9217c3c18f517d4b6c43846fc

    • SHA1

      caa7003cf85c8b3c7b2bd89e91b0a7c506d55f4e

    • SHA256

      586b10745fd2cb6c886f286a69715474ed843a6300328dab1de03f07c027b572

    • SHA512

      ff23d3ab4e6aaa0ba7829f240543079c45dbbe490feb13452d37293a74c5f73577482c6379140143ff42fa86e8544d638dc7e727d398627f44ae1aad4a6299d5

    • SSDEEP

      3072:sGGNZfCos2pA4FCF5hvikTam0/5ApYADn:hACyK40F5hvi9m0/5ASADn

    Score
    6/10
    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks