Overview

overview

10

Static

static

10

504a1d38ce...1a.elf

debian-9-armhf

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    52d0ae13c857d4eb4234dc595722dccc.bin

  • Size

    66KB

  • MD5

    b8abb7cc62a6ba30b11d52290a1d2cd3

  • SHA1

    5a1195b8460dbc4d7e4b32ddb4506c73936a6e4c

  • SHA256

    d7733e302bb047eadeb32bb2585e48c283db70667a2cf6611705dc63dd667788

  • SHA512

    0de9cc9097c9482679d52cdc3e53ddb4397eabf53cbd7b094d0c577bbe13ebe8ea32eccfdfdf9aab910541db0b3543e61f0af16babc961aaea01c28c8474af74

  • SSDEEP

    1536:TeOyiLwaFZD+h35nW2KjRxPb6kPwLa80h/9w6Y9FYajM:+SwaupWpVxjLPwV0h/9w39F1M

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

185.216.71.152:4258

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • 52d0ae13c857d4eb4234dc595722dccc.bin
    .zip

    Password: infected

  • 504a1d38ce1c64c802409879813a4707e35d5e0123e077e197ff6ab14627bc1a.elf
    .elf linux arm