gafgyt | 721774538b2c17651057c8ea6255bd79b46c9a3bfa309f4efb42f360fe1c984b | Triage

Submit
Reports

Overview

overview

Static

static

09f6d3428f...00.elf

ubuntu-22.04-amd64

7

Sharing

General

Target

d80987391e75192cf4d80073f9d4d30e.bin
Size

47KB
Sample

250112-b58xrszpax
MD5

d490e88b84d119f84bdf67799f10d72f
SHA1

fe8e61ed6af33393ab02398b724adf02de3f09e0
SHA256

721774538b2c17651057c8ea6255bd79b46c9a3bfa309f4efb42f360fe1c984b
SHA512

8b8e95ab1f0fd97704b2a4209f2db4960c7a5038afb2f781687cf56c4469bb2c146cd6c5b67bea2aa0c8c73acb4ddedb9ccfd1b0880c93f447b831db1971618d
SSDEEP

768:3+Z/9BlHbsSMHMO2EARyywIsAzOwTsd4YWof63MIp1n12SJLkgQtvun5qEqJEN9/:3+19THb3Ms7mJmV04KfCp1kIpQqpUEKK

Score

10^/10

gafgyt defense_evasion discovery linux

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

09f6d3428f6ad98b827b4a2d7cb2e5c62cd9a4e9477d6f6132f5c7e5b61deb00.elf

Resource

ubuntu2204-amd64-20240611-en

defense_evasion discovery

ubuntu-22.04-amd64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  09f6d3428f6ad98b827b4a2d7cb2e5c62cd9a4e9477d6f6132f5c7e5b61deb00.elf
- Size
  
  108KB
- MD5
  
  d80987391e75192cf4d80073f9d4d30e
- SHA1
  
  496a56e87bb2715f711801a90905b3ca0069f11b
- SHA256
  
  09f6d3428f6ad98b827b4a2d7cb2e5c62cd9a4e9477d6f6132f5c7e5b61deb00
- SHA512
  
  9093017a3c6b5afde25d9f97512bda84ef902efe5c9de6e4717992d10e5a04f7fa7bda2761007accb9b125c628b5534fcbc1d60d79fad04a2fcf50e1958ac6d0
- SSDEEP
  
  3072:RiryBV5RUKun9qEbB6yqz45feauvU80m7FnVYIY+F5mRe:F5sXZqMxYU80m7FnVYIY+F5mRe
Score

7^/10

defense_evasion discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

© 2018-2025

Terms | Privacy