gafgyt | 34f99dcc347a47ae205e18a34241b0fc[.]bin | Triage

Sharing

General

Target

34f99dcc347a47ae205e18a34241b0fc.bin
Size

41KB
MD5

d59dc3df31b3436de24b6d5a50a570c9
SHA1

6b1e25e3608bc6fcc037334e3a9cd16766f12f9a
SHA256

72e65be7c5cb868539686caa8562986be5a40ef5d46c47d663186c206574daf6
SHA512

b10be760dc2eec2e595724e1d29376048531ef4d4000c5fa902d306a522bc92d9dd7f517d1c07971c541a10f48c23b4171e4717184ae974700bdc576554cffc3
SSDEEP

768:7u//oPQOscmxDQRboUdFO/Wct+K0XsnKkzuppx:IaQJs9oUd4+6upx

Score

10^/10

gafgyt

Malware Config

Extracted

Family

gafgyt

C2

178.215.238.4:606

Signatures

Detected Gafgyt variant 1 IoCs

resource	yara_rule
static1/unpack001/f0a318ebc1caaf080d899d5d12bce05ce7200f334c1d7cca6443328f70e98579.elf	family_gafgyt

Gafgyt family
gafgyt

Files

34f99dcc347a47ae205e18a34241b0fc.bin
.zip

Password: infected
f0a318ebc1caaf080d899d5d12bce05ce7200f334c1d7cca6443328f70e98579.elf
.elf linux arm