Overview

overview

10

Static

static

10

f4c6c78133...f4.elf

debian-12-armhf

6

Sharing

Copy URL Twitter E-mail

General

  • Target

    b385b7868eb303427548ec8794df6a36.bin

  • Size

    66KB

  • MD5

    e469eb4b407d5914d06ae95dccf0f112

  • SHA1

    41038f3052940f6a36afbba5913b2f3ec1ae9e0e

  • SHA256

    7d07bf37d6e9d6ba3b69fa8ce120d43596bc7f58752202e0f1887fdeaa0d4e19

  • SHA512

    409c4883be2f9707c1da5d82930b2ed072cf2ab9f8ab504fafdbb5984b6a3b7616ab4e8caf77128a753a2fadf21b634f7cbe2ab5546cb600dda711da4f5cad20

  • SSDEEP

    1536:kgRhyk6QNj2ocmZc1xkZocmEfK/mgKZTlj69dykl0adFwMr6kjRRH:vhyk64bcmZapggsTlQX0QOIRN

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

93.123.85.176:4444

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • b385b7868eb303427548ec8794df6a36.bin
    .zip

    Password: infected

  • f4c6c78133a5ee74725fb280414427441a8f2918744bf6fa87cdc8df6a27a9f4.elf
    .elf linux arm