Overview

overview

10

Static

static

10

3925d4d4ae...d8.elf

ubuntu-18.04-amd64

3925d4d4ae...d8.elf

debian-9-armhf

3925d4d4ae...d8.elf

debian-9-mips

3925d4d4ae...d8.elf

debian-9-mipsel

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5bd17494f52ee1ab1016673df7371793.bin

  • Size

    41KB

  • MD5

    4887400b1d16feb83b23076e90b979bf

  • SHA1

    1a7092b43eb83b8ba4ae303bb307f02f9f80ed79

  • SHA256

    837ac9a7f40aa221c79f013b4f2caaa2e9a8dad141081ccf69d8879cf331892b

  • SHA512

    73efab0fb607f02db59a9541ba8ea1b90bfb6051f4fa2319d1f2798b7298ac9aa6c731e370475ae538344a38fe2ba86842238288d5a6a2fbc35fcfa82af053ee

  • SSDEEP

    768:qt9OrW8lYxc4d2V+cscuNBdgDjwciWMHrEeAQuEHwABi4RabDaLvdgzWpy:9rW8l14kVnM7GHwc2rEeAQHfiqKGjiCy

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

31.172.83.147:4258

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • 5bd17494f52ee1ab1016673df7371793.bin
    .zip

    Password: infected

  • 3925d4d4ae279327e17160b8c9d1a181b2d72f52d04a7c1f2689eb6a191fcdd8.elf
    .elf linux sparc