Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

hidakibest.x86

ubuntu-22.04-amd64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    hidakibest.x86

  • Size

    106KB

  • Sample

    240901-n8wstszhmb

  • MD5

    1b0a655b0be1320564e6995c791b0442

  • SHA1

    8dc917d8a04ad8abd64cf916948ea7a606e93af5

  • SHA256

    a00f7037b5217f56153b10436279ca4cddb8d564f6e2769113421c1190f3c1e2

  • SHA512

    92ad25dac0b2a73562b42ca1b8b71d77a81abf5a9a49546198e82134defed34aa641e29581c94197f8e83e1125225e8edacf53037430964ded83b7208a7fa274

  • SSDEEP

    3072:j6dye4BmJQcphaZw/1vc4QAzkSXmdRWaLHgb4:dcphaZcjrmdRWaDgb4

Score
10/10
gafgytlinux

Malware Config

Extracted

Family

gafgyt

C2

45.8.22.109:4258

Targets

    • Target

      hidakibest.x86

    • Size

      106KB

    • MD5

      1b0a655b0be1320564e6995c791b0442

    • SHA1

      8dc917d8a04ad8abd64cf916948ea7a606e93af5

    • SHA256

      a00f7037b5217f56153b10436279ca4cddb8d564f6e2769113421c1190f3c1e2

    • SHA512

      92ad25dac0b2a73562b42ca1b8b71d77a81abf5a9a49546198e82134defed34aa641e29581c94197f8e83e1125225e8edacf53037430964ded83b7208a7fa274

    • SSDEEP

      3072:j6dye4BmJQcphaZw/1vc4QAzkSXmdRWaLHgb4:dcphaZcjrmdRWaDgb4

    Score
    6/10

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks