gafgyt | cda909c2099808ee8c83c3b9c2f60be20070a403b70a922831fe0037cd8206ea | Triage

Submit
Reports

Overview

overview

Static

static

3a3149f176...kes118

ubuntu-24.04-amd64

6

Sharing

General

Target

3a3149f17631b414e9704a03628032c2_JaffaCakes118
Size

183KB
Sample

240729-gmq7wszele
MD5

3a3149f17631b414e9704a03628032c2
SHA1

de36e553eb579ee72042a0f21e1b7b21e84ef41d
SHA256

cda909c2099808ee8c83c3b9c2f60be20070a403b70a922831fe0037cd8206ea
SHA512

2dae7748d65732e123191465f6f24597f76123a3dfe4d5c6da66618452644812703818bcbe01fcba19e0c5067cc7b2e2d6139a521699d51c3d812b31419908ec
SSDEEP

3072:IQnYGb/49zp5VqRSxa1f1ZvtDNDfNIfrozkaUD4mvcveVrU1uvn/qNd7i3xZrGRF:8G7AydVtDNDIr0YdvcvelU1uvn/qNd7B

Score

10^/10

gafgyt kaiten linux

Static task

static1

5 signatures

Behavioral task

behavioral1

Sample

3a3149f17631b414e9704a03628032c2_JaffaCakes118

Resource

ubuntu2404-amd64-20240729-en

ubuntu-24.04-amd64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  3a3149f17631b414e9704a03628032c2_JaffaCakes118
- Size
  
  183KB
- MD5
  
  3a3149f17631b414e9704a03628032c2
- SHA1
  
  de36e553eb579ee72042a0f21e1b7b21e84ef41d
- SHA256
  
  cda909c2099808ee8c83c3b9c2f60be20070a403b70a922831fe0037cd8206ea
- SHA512
  
  2dae7748d65732e123191465f6f24597f76123a3dfe4d5c6da66618452644812703818bcbe01fcba19e0c5067cc7b2e2d6139a521699d51c3d812b31419908ec
- SSDEEP
  
  3072:IQnYGb/49zp5VqRSxa1f1ZvtDNDfNIfrozkaUD4mvcveVrU1uvn/qNd7i3xZrGRF:8G7AydVtDNDIr0YdvcvelU1uvn/qNd7B
Score

6^/10
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy