gafgyt | e7ad4bf91986124553a084353d40ef339fb1bdbde40cd23daa293e6299cfb72c | Triage

Sharing

General

Target

mipsel.elf
Size

148KB
Sample

241209-wzwepswpes
MD5

07ae9be42c2ffd279171c625f9e92ee5
SHA1

547e9e2f2646f41db51bdb5fc178863bd41d1492
SHA256

e7ad4bf91986124553a084353d40ef339fb1bdbde40cd23daa293e6299cfb72c
SHA512

dfa773210ed0da02ed9533fe95c7c28b881d3d97eff60b643b3eafd9eb207afad7a9ee8a139af44ca2f4c853b435ff5f82bbc5cac8f0eedea6e975890578b4d3
SSDEEP

1536:bVeTpqCVvWRYx0O9vPBysZgvsgxqAz/0ufMytVmpLtaoLJImlP+s4zWfOodW:byvWmBx+sK/Pfl8pImlWs4zWfOodW

Score

10^/10

gafgyt discovery

Malware Config

Extracted

Family

gafgyt

C2

109.176.207.235:666

Targets

- Target
  
  mipsel.elf
- Size
  
  148KB
- MD5
  
  07ae9be42c2ffd279171c625f9e92ee5
- SHA1
  
  547e9e2f2646f41db51bdb5fc178863bd41d1492
- SHA256
  
  e7ad4bf91986124553a084353d40ef339fb1bdbde40cd23daa293e6299cfb72c
- SHA512
  
  dfa773210ed0da02ed9533fe95c7c28b881d3d97eff60b643b3eafd9eb207afad7a9ee8a139af44ca2f4c853b435ff5f82bbc5cac8f0eedea6e975890578b4d3
- SSDEEP
  
  1536:bVeTpqCVvWRYx0O9vPBysZgvsgxqAz/0ufMytVmpLtaoLJImlP+s4zWfOodW:byvWmBx+sK/Pfl8pImlWs4zWfOodW
Score

4^/10

discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1