General

  • Target

    rebirth.x86.elf

  • Size

    98KB

  • Sample

    241230-bplgjatjdm

  • MD5

    982b1e5bedbac1f9770fcda41a10317c

  • SHA1

    c54271da294dfb5cb46a6c4c87fe402cf17bef4b

  • SHA256

    b82d68e77b34401e5804d1221376cada0ff4c0019559c031e082315dbe505327

  • SHA512

    25def5edc170743e142265ea04bd5fc63b9e61cab4d1a0dde4c163099f4ca287da504d6bf4093100f0f924eea24db7fa3804b808b1811951b8bd82e88e927cda

  • SSDEEP

    1536:Q9fT9WiC3txvWtfEo5vXJM9wypej++3hnEgL7nLGPTms5TDUMHYr/:Q9jC9wtsOnuejjhnEgL7smITDfHYr/

Score
10/10

Malware Config

Extracted

Family

gafgyt

C2

87.120.113.63:666

Targets

    • Target

      rebirth.x86.elf

    • Size

      98KB

    • MD5

      982b1e5bedbac1f9770fcda41a10317c

    • SHA1

      c54271da294dfb5cb46a6c4c87fe402cf17bef4b

    • SHA256

      b82d68e77b34401e5804d1221376cada0ff4c0019559c031e082315dbe505327

    • SHA512

      25def5edc170743e142265ea04bd5fc63b9e61cab4d1a0dde4c163099f4ca287da504d6bf4093100f0f924eea24db7fa3804b808b1811951b8bd82e88e927cda

    • SSDEEP

      1536:Q9fT9WiC3txvWtfEo5vXJM9wypej++3hnEgL7nLGPTms5TDUMHYr/:Q9jC9wtsOnuejjhnEgL7smITDfHYr/

    Score
    6/10
    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks