Behavioral task
behavioral1
Sample
199dc89ad2c347cf35d0a41c9406f96f0bbc31cd8d137ee4cfd0e85d8c297fc9.elf
Resource
debian9-armhf-20221111-en
debian-9-armhf
0 signatures
150 seconds
General
-
Target
199dc89ad2c347cf35d0a41c9406f96f0bbc31cd8d137ee4cfd0e85d8c297fc9.zip
-
Size
48KB
-
MD5
5bfcbc8e5dda7b12ef15b5faf327b280
-
SHA1
a32bd3fa610d452dba1ffbea13ff62e6b6e9037e
-
SHA256
152e73417ab4b8b871f1b51d6aa64428decf2f9b68fc09a1142c664a85df0f29
-
SHA512
313767c066fe3948cd5a026bb46f789417ce91b10fbca4dcf4ec89796f01050d6b57c42a48bdd711cb68d05687685de250ca23fb664140564e6c52e8dbf92b60
-
SSDEEP
1536:14sQlC53xCj+tVUVQVVP3CQ8x1bjXA6MvHtexn:14sIC5sj+3UQVP3Sx1fXGvHta
Score
10/10
Malware Config
Signatures
-
Detected Gafgyt variant 1 IoCs
Processes:
resource yara_rule static1/unpack001/199dc89ad2c347cf35d0a41c9406f96f0bbc31cd8d137ee4cfd0e85d8c297fc9.elf family_gafgyt -
Gafgyt family
Files
-
199dc89ad2c347cf35d0a41c9406f96f0bbc31cd8d137ee4cfd0e85d8c297fc9.zip.zip
Password: infected
-
199dc89ad2c347cf35d0a41c9406f96f0bbc31cd8d137ee4cfd0e85d8c297fc9.elf.elf linux arm