Behavioral task
behavioral1
Sample
fee8ee25f2b29e61c565db5a9d5f75a668b87793e276cb1622f59f840ee1872a.elf
Resource
debian9-armhf-20221111-en
debian-9-armhf
2 signatures
150 seconds
General
-
Target
dbed2a985fb620021ab88c326bdc098a.bin
-
Size
64KB
-
MD5
f7f704c32bde516d0d861ebc14d2869d
-
SHA1
8deea3f5b254456978c7ed1190d11e692bb0aa0a
-
SHA256
c6fa4048772cc44c866add859f20e2d68c9b2f4a3ccdd7bc51dc623984a0b998
-
SHA512
fa91ecdcb1528593f3c2b09753025425b85ccfb17d7a34fa6a02cacd706bc4d16e1f55cdd73ce3ce54834036045c57aab590945eee75109fb9e60225313c6bee
-
SSDEEP
1536:x6EAalIrs90xDZs86L1QIiR2hm4Y70+S1qqSuDRhee:oEPD9KZsh5Q+hnY7o1qC
Score
10/10
Malware Config
Signatures
-
Detected Gafgyt variant 1 IoCs
resource yara_rule static1/unpack001/fee8ee25f2b29e61c565db5a9d5f75a668b87793e276cb1622f59f840ee1872a.elf family_gafgyt -
Gafgyt family
Files
-
dbed2a985fb620021ab88c326bdc098a.bin.zip
Password: infected
-
fee8ee25f2b29e61c565db5a9d5f75a668b87793e276cb1622f59f840ee1872a.elf.elf linux arm