General

  • Target

    b2beab580053cd4b42058f5e043e5211.bin

  • Size

    66KB

  • Sample

    241224-b595tsyjds

  • MD5

    83d22875de0737b9baac5887d86b51ca

  • SHA1

    2170c0546d08cade7c6616a1b35164d3f2572957

  • SHA256

    179485fec1fcf815cc71976e8a2ce6a1e0a06381716dd6301942e288eb6b23f5

  • SHA512

    6f7b2776d2e82f35bcee2d6cd420e4a357fc1856c662ad17dee278573761d0d84842348c3f2b2406cc13ca88bf87b9d4efeebbb57be98c7688fb0d0dce224386

  • SSDEEP

    1536:zPZfg1sE8rJM2QZ3VY/gjs8L7N0Bmg7gQSLyoC7nInBLdRr:9oI6lpdCBmg7gQSLyopBLdh

Score
10/10

Malware Config

Extracted

Family

gafgyt

C2

185.216.71.152:4258

Targets

    • Target

      7780ae12ab7aa44d2010b16b4cc944b9cc5df5dcd945f7edb12c992af76cfbe3.elf

    • Size

      150KB

    • MD5

      b2beab580053cd4b42058f5e043e5211

    • SHA1

      7c26316b9a7a8d2d4f4cd1186e06b5303fb6f75b

    • SHA256

      7780ae12ab7aa44d2010b16b4cc944b9cc5df5dcd945f7edb12c992af76cfbe3

    • SHA512

      04aa9f2510478887f14af622b899b323ad00576c3fbea2150b9cd5523b4da5a43d3cb41ffbccbeab8337fb34f42d409f775c7ddaa0b54dd0ef3b73c6d0176ea0

    • SSDEEP

      3072:Tdbmn8aAEHqgSkano1DTAD5hWTGZWYxVlxXmpwTsL/QMyn:he8aAEHKkdDTW5hWTGZWYxVldmpwTsLS

    Score
    6/10
    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks