General

  • Target

    8feca1ae23a597ea75f963bb931e6ae30db0a31991ef1bd7a02e92b6de6109ab.elf

  • Size

    92KB

  • Sample

    241112-c5vwkswlbp

  • MD5

    2c8603ea27a80024f89cf0ac89b8a843

  • SHA1

    17da31879da15692b43746322367936d4b584498

  • SHA256

    8feca1ae23a597ea75f963bb931e6ae30db0a31991ef1bd7a02e92b6de6109ab

  • SHA512

    ebfad74c55ac197557cedf8af4e832f11752ec9e39ee306d985c8c16cf966f782aea81db640a27a740867d4047712c3e9b152198815dd5ab3424ce2cda5cb386

  • SSDEEP

    1536:W7uJtxNeVE8zV7aDlvhE1hmkJ0S36W6bWjK33yPXfH0mA+KWOXFseaZYxe:4SsVEeVMlpmXJ0O6WpjKHifUm/KWOXFE

Score
10/10

Malware Config

Extracted

Family

gafgyt

C2

94.154.172.145:3074

Targets

    • Target

      8feca1ae23a597ea75f963bb931e6ae30db0a31991ef1bd7a02e92b6de6109ab.elf

    • Size

      92KB

    • MD5

      2c8603ea27a80024f89cf0ac89b8a843

    • SHA1

      17da31879da15692b43746322367936d4b584498

    • SHA256

      8feca1ae23a597ea75f963bb931e6ae30db0a31991ef1bd7a02e92b6de6109ab

    • SHA512

      ebfad74c55ac197557cedf8af4e832f11752ec9e39ee306d985c8c16cf966f782aea81db640a27a740867d4047712c3e9b152198815dd5ab3424ce2cda5cb386

    • SSDEEP

      1536:W7uJtxNeVE8zV7aDlvhE1hmkJ0S36W6bWjK33yPXfH0mA+KWOXFseaZYxe:4SsVEeVMlpmXJ0O6WpjKHifUm/KWOXFE

    Score
    6/10
    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks