General

  • Target

    8696fc8155d0567fe7b4cdd7650b0a2596362874dba469a7022b1d8f1b3ad829.elf

  • Size

    131KB

  • Sample

    241114-dbpm5sxkal

  • MD5

    540ef836455f4094bbb22c4ee954948a

  • SHA1

    dbcbd28e51449f976b671373e28869244e691f50

  • SHA256

    8696fc8155d0567fe7b4cdd7650b0a2596362874dba469a7022b1d8f1b3ad829

  • SHA512

    3cd4a8a3be4920ee164969e999b5efbb7f2c7747b09bad01d0743c125da95aff462d4c5031c25f456268fac3d385d86ee1da7b41f55a42c6a0b0ac8336b34572

  • SSDEEP

    1536:o2beTpNb9DERkLMurNpZ3efJp68E1wYqdvd00PUmkVmSFxBC7vXZX:o2cNJLlrvJF1yvdlPUmkASFxBKvXZX

Score
10/10

Malware Config

Extracted

Family

gafgyt

C2

185.78.76.132:839

Targets

    • Target

      8696fc8155d0567fe7b4cdd7650b0a2596362874dba469a7022b1d8f1b3ad829.elf

    • Size

      131KB

    • MD5

      540ef836455f4094bbb22c4ee954948a

    • SHA1

      dbcbd28e51449f976b671373e28869244e691f50

    • SHA256

      8696fc8155d0567fe7b4cdd7650b0a2596362874dba469a7022b1d8f1b3ad829

    • SHA512

      3cd4a8a3be4920ee164969e999b5efbb7f2c7747b09bad01d0743c125da95aff462d4c5031c25f456268fac3d385d86ee1da7b41f55a42c6a0b0ac8336b34572

    • SSDEEP

      1536:o2beTpNb9DERkLMurNpZ3efJp68E1wYqdvd00PUmkVmSFxBC7vXZX:o2cNJLlrvJF1yvdlPUmkASFxBKvXZX

    Score
    6/10
    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks