Behavioral task
behavioral1
Sample
24140863b696b6bab55f08796e09c76e1c2383079da5f7c7f53ce968f2e08385.elf
Resource
debian9-armhf-20221111-en
debian-9-armhf
0 signatures
150 seconds
General
-
Target
ceaa93648fc80fbe40145e512d30b258.bin
-
Size
41KB
-
MD5
1eb06d22e425f292809864e20f4230d1
-
SHA1
2710ba47721d9cdda2e43833c6d50240cc10dd17
-
SHA256
22bd09c590bd597bcbb7890c2b1c997062141c4e76ac7a7caf4d169ee7d619ee
-
SHA512
65252c3c4eb53bdbf6af8a34ceef16c438e7d468c21bc2fecd5c03bc5d8b501b87ab83c909f5d8b72abb3c2ba477bee12318332eec0bed89752f9c2d5ecb2b67
-
SSDEEP
768:/NHW7rAJ0LOqqEXn9kpawoKGCU8xAN3NkTEvKLGdBgpbTEbrR686wIaFOw3Z+:/N27rAJ0y18qpa198kK8K2BwUrRL6/u+
Score
10/10
Malware Config
Signatures
-
Detected Gafgyt variant 1 IoCs
Processes:
resource yara_rule static1/unpack001/24140863b696b6bab55f08796e09c76e1c2383079da5f7c7f53ce968f2e08385.elf family_gafgyt -
Gafgyt family
Files
-
ceaa93648fc80fbe40145e512d30b258.bin.zip
Password: infected
-
24140863b696b6bab55f08796e09c76e1c2383079da5f7c7f53ce968f2e08385.elf.elf linux arm