gafgyt | 68d109205d18fe5f9b38cd662a0ab40627cad22065b8ee4f8a7a0d5b52c186e9 | Triage

Submit
Reports

Overview

overview

Static

static

gigganiggax86.elf

ubuntu-18.04-amd64

7

Sharing

General

Target

gigganiggax86.elf
Size

234KB
Sample

250108-2z4c7sxlgs
MD5

0901782a1cfbbcdda033da6294cbd5e4
SHA1

905603f4ca0e98e1a663f3b23bd3217e6135d948
SHA256

68d109205d18fe5f9b38cd662a0ab40627cad22065b8ee4f8a7a0d5b52c186e9
SHA512

7c385a815bec485c77e007adf9dac8b19366b05ba709b8801be6fa04006041ac06935328a7083ab430aed585ef8a136a2a92d8198c17733cab5bacd8a8477c27
SSDEEP

3072:Xm+efSh6RVZeB4vsZnaBBC+LOn3mBoMy/nWHMJatLgpjm/I88PMKHPPONm:XmfZeN8BM4OQMJatUm/I88PMKHPPONm

Score

10^/10

gafgyt defense_evasion discovery linux

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

gigganiggax86.elf

Resource

ubuntu1804-amd64-20240508-en

defense_evasion discovery

ubuntu-18.04-amd64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  gigganiggax86.elf
- Size
  
  234KB
- MD5
  
  0901782a1cfbbcdda033da6294cbd5e4
- SHA1
  
  905603f4ca0e98e1a663f3b23bd3217e6135d948
- SHA256
  
  68d109205d18fe5f9b38cd662a0ab40627cad22065b8ee4f8a7a0d5b52c186e9
- SHA512
  
  7c385a815bec485c77e007adf9dac8b19366b05ba709b8801be6fa04006041ac06935328a7083ab430aed585ef8a136a2a92d8198c17733cab5bacd8a8477c27
- SSDEEP
  
  3072:Xm+efSh6RVZeB4vsZnaBBC+LOn3mBoMy/nWHMJatLgpjm/I88PMKHPPONm:XmfZeN8BM4OQMJatUm/I88PMKHPPONm
Score

7^/10

defense_evasion discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
- Enumerates running processes
  Discovers information about currently running processes on the system
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

© 2018-2025

Terms | Privacy