Behavioral task
behavioral1
Sample
306b4704abf061cb553649fafda0729e1966baa1bb90995f609970266243d878.elf
Resource
ubuntu1804-amd64-en-20211208
Behavioral task
behavioral2
Sample
306b4704abf061cb553649fafda0729e1966baa1bb90995f609970266243d878.elf
Resource
debian9-armhf-20221111-en
Behavioral task
behavioral3
Sample
306b4704abf061cb553649fafda0729e1966baa1bb90995f609970266243d878.elf
Resource
debian9-mipsbe-en-20211208
Behavioral task
behavioral4
Sample
306b4704abf061cb553649fafda0729e1966baa1bb90995f609970266243d878.elf
Resource
debian9-mipsel-en-20211208
General
-
Target
306b4704abf061cb553649fafda0729e1966baa1bb90995f609970266243d878.zip
-
Size
36KB
-
MD5
8db6e7ecebaba89d68daa1a5156fd4a8
-
SHA1
3b1ff5a688f2c43be6ccaefde1a5d710a90f0eb0
-
SHA256
b796ef2511d8f2b78cc11cdcfe22e5763cab4c8379c5149399c65eb1dc4ef0d3
-
SHA512
451d9ef8aab307d5b530cd37178cb57aadff3948894a061b82df4e930ef130842e1b42835a59dfda653d60c652a702f0d0b869af6e6512ae50a2f988496191d8
-
SSDEEP
768:5tYIW5LRbHJiMf3T4EvoOilhIPuncKOBppDHcp7ojb6lLLZMF+HA:5iDRbJdilh4uncFnl8p7AeEAHA
Malware Config
Signatures
-
Detected Gafgyt variant 1 IoCs
Processes:
resource yara_rule static1/unpack001/306b4704abf061cb553649fafda0729e1966baa1bb90995f609970266243d878.elf family_gafgyt -
Gafgyt family
Files
-
306b4704abf061cb553649fafda0729e1966baa1bb90995f609970266243d878.zip.zip
Password: infected
-
306b4704abf061cb553649fafda0729e1966baa1bb90995f609970266243d878.elf.elf linux ppc