gafgyt | i-5[.]8-6[.]Sakura[.]elf | Triage

Sharing

General

Target

i-5.8-6.Sakura.elf
Size

96KB
MD5

b17cb812f0f9f4f165aafb88d3095c1d
SHA1

07973fdd4580ded468e718dd9f760cf3ebd30546
SHA256

becd8adb426f1b76dc3fc48adb19d7928cb007f6ae06fe857d468b86cf587d9d
SHA512

3c40ef6ec0337d37f1bb21982c3d1e7e9b206f0cbb588c85260b0d94be1cc23c1a23cbb58487b624653ee2f01bf870b7737436f6b34f1d420a4b1b1b25cd8ef0
SSDEEP

3072:ZvHbSC2Ohoyx5cX1silqm6muxVqDr78fz1e:ZvHbSC2DyxO1hqm6muxVqDr78fz1e

Score

10^/10

gafgyt

Malware Config

Extracted

Family

gafgyt

C2

205.185.115.242:12345

Signatures

Detected Gafgyt variant 1 IoCs

resource	yara_rule
sample	family_gafgyt

Gafgyt family
gafgyt

Files

i-5.8-6.Sakura.elf
.elf linux