Behavioral task
behavioral1
Sample
865ca599a0e8ac178d7f35b6d02c0d6d.elf
Resource
debian9-armhf-20221111-en
debian-9-armhf
0 signatures
150 seconds
General
-
Target
865ca599a0e8ac178d7f35b6d02c0d6d.elf
-
Size
107KB
-
MD5
865ca599a0e8ac178d7f35b6d02c0d6d
-
SHA1
e35cdac3ff158d93479597d2c0be096753f1f62e
-
SHA256
08dcd03dcaf3796c81f653effaaae48f9fd290f98a611abe40d23918adde2d7a
-
SHA512
e1877950be26bce290f378e26aef7a4f1c90122332f23bed4884688fc78f2336749d561510d3e37e83a58f21c0673fa2e7fcbded703a9b72cc64d36545c6ef48
-
SSDEEP
3072:xXl16sILkOYnHjDPgg/JOyTmZuqQ4DWwXXtke:YsI4OYHjDPpTmZuqQ4DWwXXtke
Score
10/10
Malware Config
Extracted
Family
gafgyt
C2
185.225.73.130:667
Signatures
-
Detected Gafgyt variant 1 IoCs
Processes:
resource yara_rule sample family_gafgyt -
Gafgyt family
Files
-
865ca599a0e8ac178d7f35b6d02c0d6d.elf.elf linux arm