Behavioral task
behavioral1
Sample
d6d58fe964e2f2c6413ca6884ee4efc740059cc656dbdba01313b4919810df37.elf
Resource
debian9-armhf-20221111-en
debian-9-armhf
2 signatures
150 seconds
General
-
Target
14ee5ff8f0fcd533a27396a917f49a5f.bin
-
Size
55KB
-
MD5
e6a5c2d64c9baeb6316129f672c3d4ea
-
SHA1
3e449b4daa8e1d0eeb35cd1caf34537eaa9629c4
-
SHA256
25320537a81e5973c49a8e4617233e4e69aa9cabc923d91b342df66f3cc0b076
-
SHA512
5c907212a52c2efcd11e22d69b59195a94ffb8fa98a96e676aed50f83f022c33964f88dea7e179d8003b1e2978fb7135d6d62f13ca40f210935777b817b6eab6
-
SSDEEP
1536:1lRfQrb+GPW9GcyvWJwG/KF1TVtYRZ2t8Bre:/RfEPW9GcB2B1TPz9
Score
10/10
Malware Config
Signatures
-
Detected Gafgyt variant 1 IoCs
Processes:
resource yara_rule static1/unpack001/d6d58fe964e2f2c6413ca6884ee4efc740059cc656dbdba01313b4919810df37.elf family_gafgyt -
Gafgyt family
Files
-
14ee5ff8f0fcd533a27396a917f49a5f.bin.zip
Password: infected
-
d6d58fe964e2f2c6413ca6884ee4efc740059cc656dbdba01313b4919810df37.elf.elf linux arm