Behavioral task
behavioral1
Sample
c9407c8b2b8c38f0ae6a07679b7def209d7562c176deea69e7541cd10543c646.elf
Resource
debian9-armhf-20221111-en
debian-9-armhf
0 signatures
150 seconds
General
-
Target
80701232c3d383d2dc2b7ccb801c1271.bin
-
Size
47KB
-
MD5
1007826a32d5eca2140e8bdfa5c9a237
-
SHA1
d4758a4db352030cfbaf822cbe2fe60be4954185
-
SHA256
39c87bfc6cd4e29d6ff6991e95298a77266907d8d5d5f7e789f2535d8fb8d0ba
-
SHA512
bb3f2e2e84a89be5394a6dd1e26c19f2ae763fce81b873d168befed693eb5ff80e87506a939263d0ebf1f00c66be95344eecc124f9293b4a9c770eaca55ea16e
-
SSDEEP
768:Wbcx3jWW4jjxTsSr2CR8/3u5sfpwCoxONvWw1TRVr/6dW6x/d24:p6TjHr/8v/pRN6dWud24
Score
10/10
Malware Config
Signatures
-
Detected Gafgyt variant 1 IoCs
Processes:
resource yara_rule static1/unpack001/c9407c8b2b8c38f0ae6a07679b7def209d7562c176deea69e7541cd10543c646.elf family_gafgyt -
Gafgyt family
Files
-
80701232c3d383d2dc2b7ccb801c1271.bin.zip
Password: infected
-
c9407c8b2b8c38f0ae6a07679b7def209d7562c176deea69e7541cd10543c646.elf.elf linux arm