Behavioral task
behavioral1
Sample
9eb7604cf6b13fc1ffff096fba0067eea76c1e901f81710be5ee7bcac8137024.elf
Resource
debian9-armhf-20221111-en
debian-9-armhf
0 signatures
150 seconds
General
-
Target
b827c522f136957f394e7ed04d9acdf6.bin
-
Size
43KB
-
MD5
ed49db2be09364ab7abc82ea15817326
-
SHA1
e2239dfa9ffe3aebe466d79c9d43bd576b84b14b
-
SHA256
7c9794532d81d65e23fff7a29814a1652059f8536eb5c5203aae61b29cb15673
-
SHA512
80be12d844e335af8ed584c7651ff46696c30b6098ea04083449500eba19c76cfeffb8e1d433739b66be3c44de2d9a01af944a8ad3c41cc35a606f04ab5febd8
-
SSDEEP
768:aZxMKhk3Sv/dKo9RDMvIB1ycO+QMMcErctZOA7Ax99MjLOERG1bGAHNs6:RKhTdF9JMk1YPAOAEx9SjLOE09
Score
10/10
Malware Config
Signatures
-
Detected Gafgyt variant 1 IoCs
Processes:
resource yara_rule static1/unpack001/9eb7604cf6b13fc1ffff096fba0067eea76c1e901f81710be5ee7bcac8137024.elf family_gafgyt -
Gafgyt family
Files
-
b827c522f136957f394e7ed04d9acdf6.bin.zip
Password: infected
-
9eb7604cf6b13fc1ffff096fba0067eea76c1e901f81710be5ee7bcac8137024.elf.elf linux arm