Behavioral task
behavioral1
Sample
27b0d25ae2e99043fcc44dcdc4888b6f1b28a6806c68be9b059e99ae7c5d3199.elf
Resource
debian9-armhf-en-20211208
debian-9-armhf
0 signatures
150 seconds
General
-
Target
8bae0bab5d934975b36db8ed047021a6.bin
-
Size
37KB
-
MD5
ed6914c769a3f2d8dc09684d9278617d
-
SHA1
7608232433dda58a85d7e7d3c4c231df090486a3
-
SHA256
251a48b28f7e541e8e58738e2ae5d98fe20a15d8e4cfa34ac4b5b6c13487baf7
-
SHA512
82c62829c741fe16b95564d9fc80807e432de320ce5cc58efb34c24a9ae2cfb93385c6475f0552b750ad391bb88f11566d566d88cac3d3ed25c5c59eab94dfd7
-
SSDEEP
768:HfWHUwZPtIWX4nvkWBV0Z+oyT5oBjRJwQ8iOqdOcLXnWnx1bGObgy:hwZPtIWonvkSV0ANAbwQYZA3gnbGC
Score
10/10
Malware Config
Signatures
-
Detected Gafgyt variant 1 IoCs
Processes:
resource yara_rule static1/unpack001/27b0d25ae2e99043fcc44dcdc4888b6f1b28a6806c68be9b059e99ae7c5d3199.elf family_gafgyt -
Gafgyt family
Files
-
8bae0bab5d934975b36db8ed047021a6.bin.zip
Password: infected
-
27b0d25ae2e99043fcc44dcdc4888b6f1b28a6806c68be9b059e99ae7c5d3199.elf.elf linux arm