General

  • Target

    57bb77ecd8391e6c8fe342f9fc3e2a34.bin

  • Size

    42KB

  • Sample

    241130-blvk2avqex

  • MD5

    5538e022e68fca3fcefcc45fa636c739

  • SHA1

    86be362ecaf2e175fa9cf70f0ba669d6b53f7fd2

  • SHA256

    e146618796de129461090ee61b26356a00d6e8f314a83df56f78b681e808e609

  • SHA512

    4e80388998843cc5f0a0302e98696997c9dcfa1fe7fcf0b3a2c1527b189669ea1443033c4f98ef4f85364cf602d19db68e935db7f20e2aa1a657f190010a583d

  • SSDEEP

    768:D9l4Bep7CnjxitqWTJtm21szKad9FXV8l+byLeJDbxqigO3+EOhUj6j3qtbiAHJ:DX4cSj0tB9s21oKad91V8jLeJDlqigOf

Score
10/10

Malware Config

Extracted

Family

gafgyt

C2

178.215.238.4:606

Targets

    • Target

      fdbd9b2a71f9a572aca410edc3de444419a3c2d238e836a687573d8bf372a9dc.elf

    • Size

      123KB

    • MD5

      57bb77ecd8391e6c8fe342f9fc3e2a34

    • SHA1

      a36a75019c2b551483b8557bbdb5d1970a71a683

    • SHA256

      fdbd9b2a71f9a572aca410edc3de444419a3c2d238e836a687573d8bf372a9dc

    • SHA512

      53c42369bbe854a396416adfcc30d416a8c3bbb5ad7bbda24dec6c6f95bbdd2dc18c7452cec92b5293b7612d5344fb0b37e60ba84a38496e09155899bf8e3513

    • SSDEEP

      1536:M7je1TMGq+f+AQ2rK7zeXeReXe8V2rK7Ie+u60GAzQj1l72HBe0EdaAW/GrmW+IR:Ted0W0MZQHadaAW/GrmW+IFB1Dt1hR/

    Score
    6/10
    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks