General

  • Target

    5259f289b8841e6beb9718c486210857edac40b5c206e5949fa5402b861849cf.elf

  • Size

    199KB

  • Sample

    241224-ea47wa1ngk

  • MD5

    caabd697c443462f0a04d6b30529df58

  • SHA1

    4fcb97074d1971ebfa482aad5edf208b43b6d819

  • SHA256

    5259f289b8841e6beb9718c486210857edac40b5c206e5949fa5402b861849cf

  • SHA512

    abf9607d8d332eca40f19ffef0866414fa353f12663c3dd232dd190954ab4f401f69cc9e84f669910c801a30df62bba8f00425aac5b1bfd99e756bdd4277a1a8

  • SSDEEP

    1536:+WejRFyDT2k+8Y8Lb9b/g51I5zwlI0X9KQyQpnhwKa5hewdsluG+SjlFmzlnZvFg:+dFIT2kBAI/8n45hep5FmBnZvP/un

Score
10/10

Malware Config

Extracted

Family

gafgyt

C2

154.213.186.115:4444

Targets

    • Target

      5259f289b8841e6beb9718c486210857edac40b5c206e5949fa5402b861849cf.elf

    • Size

      199KB

    • MD5

      caabd697c443462f0a04d6b30529df58

    • SHA1

      4fcb97074d1971ebfa482aad5edf208b43b6d819

    • SHA256

      5259f289b8841e6beb9718c486210857edac40b5c206e5949fa5402b861849cf

    • SHA512

      abf9607d8d332eca40f19ffef0866414fa353f12663c3dd232dd190954ab4f401f69cc9e84f669910c801a30df62bba8f00425aac5b1bfd99e756bdd4277a1a8

    • SSDEEP

      1536:+WejRFyDT2k+8Y8Lb9b/g51I5zwlI0X9KQyQpnhwKa5hewdsluG+SjlFmzlnZvFg:+dFIT2kBAI/8n45hep5FmBnZvP/un

    Score
    6/10
    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks