gafgyt | acb7dcba9ce0221ec75390fe8bd65521221dac71087b4b7e1c72f6370eb2844d | Triage

Submit
Reports

Overview

overview

Static

static

6857f633d0...96.elf

debian-12-mipsel

6

Sharing

General

Target

f4d8420b08d48836b1fea22dc4c5a99c.bin
Size

56KB
Sample

240702-cfccyawbrp
MD5

e1a2e6bb19ca512df122cf75e4e326fc
SHA1

ddb619a79525a2de194466503dd8aba46e9db876
SHA256

acb7dcba9ce0221ec75390fe8bd65521221dac71087b4b7e1c72f6370eb2844d
SHA512

37889c97d9fb216165e368fa5fdde8ffd76fc348b6ed7f005b33355b792e2745c33058e7fc529d9f6aad2516c7543229d059838320b3368182e16ec8c5b76202
SSDEEP

1536:4jh9slAW7rkCOad4XwJHakLChtkukBOrPIVZCP:47C17TO4zJH4XLxjiCP

Score

10^/10

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

6857f633d049eaeca85ac85147b93c184c5294dcfdb6f5781e3f6de390451596.elf

Resource

debian12-mipsel-20240418-en

debian-12-mipsel

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  6857f633d049eaeca85ac85147b93c184c5294dcfdb6f5781e3f6de390451596.elf
- Size
  
  182KB
- MD5
  
  f4d8420b08d48836b1fea22dc4c5a99c
- SHA1
  
  4916bad693fc77da7f45911fb9dd78bbd22f3ed5
- SHA256
  
  6857f633d049eaeca85ac85147b93c184c5294dcfdb6f5781e3f6de390451596
- SHA512
  
  de9d354596a5c1dde15e5d0d3e89d495690ed3060ea8216cc63b0394e77f5316bf79c6715271faaf9a551124d375d371a6eef6d3dac803f5d69efa06be5af3bc
- SSDEEP
  
  3072:f/psdwn60zEvxMetJ8add9QzhsjnFkjHNdfi+8qLw/i+L9k:fhsg6A/etJ8addQuFcdfi+8qLwa+L9k
Score

6^/10
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy