gafgyt | 1d7c538aca37fa367dbca7d1d54b5bf53b587f69b43289080e9714c6320fb60b | Triage

Sharing

General

Target

mips
Size

148KB
Sample

241229-p2fzgasjgk
MD5

dcce8203078d259e501243f556143fb0
SHA1

898246b390f9402d6d22dd4fc0cc857ceaf1955f
SHA256

1d7c538aca37fa367dbca7d1d54b5bf53b587f69b43289080e9714c6320fb60b
SHA512

2c37857b963d0aabd1654db46566f5a568123b88f4c6ec0ccc29bc4fa7e6216a44b4f7790352c7f7931c72ef9a9a3f5e9198c1b89d7e5aa5b3f3a9e3f31a0a0a
SSDEEP

1536:mVNs7K797V+nv57gbj6l6T6B6v6N6/6AePe1ebeZe5bwClA2rKQA1dXAQTI/e0hm:vY01ZkXAQT4Nj9//ImlWs4zWfOodW

Score

10^/10

gafgyt discovery

Malware Config

Extracted

Family

gafgyt

C2

176.123.166.244:23

Targets

- Target
  
  mips
- Size
  
  148KB
- MD5
  
  dcce8203078d259e501243f556143fb0
- SHA1
  
  898246b390f9402d6d22dd4fc0cc857ceaf1955f
- SHA256
  
  1d7c538aca37fa367dbca7d1d54b5bf53b587f69b43289080e9714c6320fb60b
- SHA512
  
  2c37857b963d0aabd1654db46566f5a568123b88f4c6ec0ccc29bc4fa7e6216a44b4f7790352c7f7931c72ef9a9a3f5e9198c1b89d7e5aa5b3f3a9e3f31a0a0a
- SSDEEP
  
  1536:mVNs7K797V+nv57gbj6l6T6B6v6N6/6AePe1ebeZe5bwClA2rKQA1dXAQTI/e0hm:vY01ZkXAQT4Nj9//ImlWs4zWfOodW
Score

4^/10

discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1