General

  • Target

    7024f58191b559e7c07e7f4d442f126206b76728b779efdd7fac80f32ac99ff7.elf

  • Size

    130KB

  • Sample

    240715-x7ebtsvhrm

  • MD5

    bc633ba0b5ebad51e2b407cd5a26d0b1

  • SHA1

    af1ead1cf577445892a59e9e56f86695de786c38

  • SHA256

    7024f58191b559e7c07e7f4d442f126206b76728b779efdd7fac80f32ac99ff7

  • SHA512

    efd62d50f36151a1e2994689a2cb0235aeeb3b96fdd5dde694f85847265d731e6368890dfac6f3659b965123429f4773bd3eb98bab53f6209c92fb90522f989f

  • SSDEEP

    1536:eeej2KNV2q3uZJ2odQAWhT7iJHsKCFfCuhKeEH++WZbUKmWCnB65Hubn:e6qvjAKdrEezxvmvnBUHubn

Score
10/10

Malware Config

Extracted

Family

gafgyt

C2

31.44.2.165:23

Targets

    • Target

      7024f58191b559e7c07e7f4d442f126206b76728b779efdd7fac80f32ac99ff7.elf

    • Size

      130KB

    • MD5

      bc633ba0b5ebad51e2b407cd5a26d0b1

    • SHA1

      af1ead1cf577445892a59e9e56f86695de786c38

    • SHA256

      7024f58191b559e7c07e7f4d442f126206b76728b779efdd7fac80f32ac99ff7

    • SHA512

      efd62d50f36151a1e2994689a2cb0235aeeb3b96fdd5dde694f85847265d731e6368890dfac6f3659b965123429f4773bd3eb98bab53f6209c92fb90522f989f

    • SSDEEP

      1536:eeej2KNV2q3uZJ2odQAWhT7iJHsKCFfCuhKeEH++WZbUKmWCnB65Hubn:e6qvjAKdrEezxvmvnBUHubn

    Score
    6/10
    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks