General

  • Target

    6950f28382d7f11e18bdf53f3983117b.elf

  • Size

    83KB

  • Sample

    241108-khly6a1qbn

  • MD5

    6950f28382d7f11e18bdf53f3983117b

  • SHA1

    71891e12f5f6c6c86dcc8f64e0b2f309af037a60

  • SHA256

    e9decec9730c894effbb5b0b7686a1883bdf0bc29c6a1e28dede706416632d7c

  • SHA512

    06a50b48e94edf319a05ad0dcaf3c81302688665dde94dd6f76227a1f31a16b2402eb6c0c0353cdc1ada73d817c4c18ff002f4794ba566d8d2af9e73c74328b3

  • SSDEEP

    1536:W35b9Vc4N3J6lreu5r4hWj8LLWDloRmF+wVOz+sXcfW7k:Ab9Vc4JJ6liuq0Yn2oRmEwVOz+ucfW7k

Score
10/10

Malware Config

Extracted

Family

gafgyt

C2

31.172.87.248:12345

Targets

    • Target

      6950f28382d7f11e18bdf53f3983117b.elf

    • Size

      83KB

    • MD5

      6950f28382d7f11e18bdf53f3983117b

    • SHA1

      71891e12f5f6c6c86dcc8f64e0b2f309af037a60

    • SHA256

      e9decec9730c894effbb5b0b7686a1883bdf0bc29c6a1e28dede706416632d7c

    • SHA512

      06a50b48e94edf319a05ad0dcaf3c81302688665dde94dd6f76227a1f31a16b2402eb6c0c0353cdc1ada73d817c4c18ff002f4794ba566d8d2af9e73c74328b3

    • SSDEEP

      1536:W35b9Vc4N3J6lreu5r4hWj8LLWDloRmF+wVOz+sXcfW7k:Ab9Vc4JJ6liuq0Yn2oRmEwVOz+ucfW7k

    Score
    7/10
    • Loads a kernel module

      Loads a Linux kernel module, potentially to achieve persistence

MITRE ATT&CK Matrix

Tasks