Behavioral task
behavioral1
Sample
fdda74ec2eec96fd06275f065b0beeee8912d54b186f85a94a436fa33b27cd22.elf
Resource
debian9-armhf-en-20211208
debian-9-armhf
2 signatures
150 seconds
General
-
Target
e8510a0c97bd1440d7a0e17e54748bc8.bin
-
Size
64KB
-
MD5
3d65aa96fdeacc21b764252fb1a07a41
-
SHA1
96322150680e3c891790dffa2e4ee27383e34560
-
SHA256
1153d80d236bd538ce6a15ebfb68027afe3453dfaccab3a478f2d4d6ff43f54d
-
SHA512
d0c44d5be23b5a5699e6dee8f22c5e0e40bd3b4f8047ae792e62bb680fa17c78c2564055ba5fa268198a551ca26f83e1e496530ab3b4a3f23f7a1b7a8be9a6dc
-
SSDEEP
1536:Y3Ve3Cwq54xnGAX/SeYkjhpHTIEuvbQfxXmG:Y3YS754xnGAPN/LX9xP
Score
10/10
Malware Config
Signatures
-
Detected Gafgyt variant 1 IoCs
Processes:
resource yara_rule static1/unpack001/fdda74ec2eec96fd06275f065b0beeee8912d54b186f85a94a436fa33b27cd22.elf family_gafgyt -
Gafgyt family
Files
-
e8510a0c97bd1440d7a0e17e54748bc8.bin.zip
Password: infected
-
fdda74ec2eec96fd06275f065b0beeee8912d54b186f85a94a436fa33b27cd22.elf.elf linux arm