General

  • Target

    d62b5cd9bbd7907213f68fca2a15578285b1c039408bc885727630c8a6742c59.elf

  • Size

    139KB

  • Sample

    240703-c5y81atbmc

  • MD5

    2877efce689b867b11ea43a9c8883737

  • SHA1

    eadbe9046fc0c07b0b03168626bf5e9f0c70ec9b

  • SHA256

    d62b5cd9bbd7907213f68fca2a15578285b1c039408bc885727630c8a6742c59

  • SHA512

    a4c38803f5435232cc50220ea488e149af5ab5f585420520f09aa3799404b674432439d4c42b1de5c8393add28499e40f2921194eff8880967568b6555abbcca

  • SSDEEP

    3072:yclx0/BSAMipV3SwwaY5zjq5h6Naqb0mJswdytNr9:y3tD3wjq5hv7mJswdytNr9

Score
10/10

Malware Config

Extracted

Family

gafgyt

C2

62.72.191.203:777

Targets

    • Target

      d62b5cd9bbd7907213f68fca2a15578285b1c039408bc885727630c8a6742c59.elf

    • Size

      139KB

    • MD5

      2877efce689b867b11ea43a9c8883737

    • SHA1

      eadbe9046fc0c07b0b03168626bf5e9f0c70ec9b

    • SHA256

      d62b5cd9bbd7907213f68fca2a15578285b1c039408bc885727630c8a6742c59

    • SHA512

      a4c38803f5435232cc50220ea488e149af5ab5f585420520f09aa3799404b674432439d4c42b1de5c8393add28499e40f2921194eff8880967568b6555abbcca

    • SSDEEP

      3072:yclx0/BSAMipV3SwwaY5zjq5h6Naqb0mJswdytNr9:y3tD3wjq5hv7mJswdytNr9

    Score
    6/10
    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks