Behavioral task
behavioral1
Sample
631cba65786cb33300ae6f12f4ffd926f14232bc903e2c904e8ff65cdbae6df8.elf
Resource
debian9-armhf-en-20211208
debian-9-armhf
0 signatures
150 seconds
General
-
Target
631cba65786cb33300ae6f12f4ffd926f14232bc903e2c904e8ff65cdbae6df8.zip
-
Size
43KB
-
MD5
d965cac19fc03229b4e8860cfa979e10
-
SHA1
fcee3782673db3e9a3b27dcb5717481901e73968
-
SHA256
3692788dec271781289ae5205b4ef59be3886f92f8b1565cf51d9655c533868a
-
SHA512
db51d346b2d54887a4483d56d3fc0ce088cad753e376d11cea41ca0d9d62a4007fb0a1992ccbf651d8190c8a51d0059aa6de67dc4e8f79143ec360d2fbac27ad
-
SSDEEP
768:PTGWfKWWsqUuh/O7L8cq7bvw9XuQWpmUW0ao4vt5JmqpJxSs1Sl0MB4IRqnEkt15:PTGWflnPutsIcCo4UUW0yVp3l1SFiIC5
Score
10/10
Malware Config
Signatures
-
Detected Gafgyt variant 1 IoCs
Processes:
resource yara_rule static1/unpack001/631cba65786cb33300ae6f12f4ffd926f14232bc903e2c904e8ff65cdbae6df8.elf family_gafgyt -
Gafgyt family
Files
-
631cba65786cb33300ae6f12f4ffd926f14232bc903e2c904e8ff65cdbae6df8.zip.zip
Password: infected
-
631cba65786cb33300ae6f12f4ffd926f14232bc903e2c904e8ff65cdbae6df8.elf.elf linux arm