Behavioral task
behavioral1
Sample
4c879ade1c521210c12d412a625a50b2.elf
Resource
debian9-armhf-20221111-en
debian-9-armhf
0 signatures
150 seconds
General
-
Target
4c879ade1c521210c12d412a625a50b2.elf
-
Size
117KB
-
MD5
4c879ade1c521210c12d412a625a50b2
-
SHA1
e1152c877fa38a7358c9007979a9fb83ac8de651
-
SHA256
3d6ac8d6669223ed6923ab02678039853091646a2e97e96c348845ffdd7f4452
-
SHA512
3a5439c390223c10544f70d998db176618079b531daa56c68584d121f9114abd0150e585bceedf3a235ba30e0fe3de17985393bab608f82c55d987f0b29d0570
-
SSDEEP
3072:hQrFRNfuLrGhEPOD0kg3gNlmBoHQuQekQnYW:IFzuaEGQkg3CmBoHQuQekQnYW
Score
10/10
Malware Config
Extracted
Family
gafgyt
C2
47.87.218.20:666
Signatures
-
Detected Gafgyt variant 1 IoCs
Processes:
resource yara_rule sample family_gafgyt -
Gafgyt family
Files
-
4c879ade1c521210c12d412a625a50b2.elf.elf linux arm