Behavioral task
behavioral1
Sample
4688ee802e5c602693bcc8cd3a8326a8
Resource
ubuntu1804-amd64-20231215-en
Behavioral task
behavioral2
Sample
4688ee802e5c602693bcc8cd3a8326a8
Resource
debian9-armhf-20231215-en
Behavioral task
behavioral3
Sample
4688ee802e5c602693bcc8cd3a8326a8
Resource
debian9-mipsbe-20231215-en
Behavioral task
behavioral4
Sample
4688ee802e5c602693bcc8cd3a8326a8
Resource
debian9-mipsel-20231215-en
General
-
Target
4688ee802e5c602693bcc8cd3a8326a8
-
Size
96KB
-
MD5
4688ee802e5c602693bcc8cd3a8326a8
-
SHA1
0336ea6375436646f82e39c6b995fc97f5b69eac
-
SHA256
16fcce6ace35c2eb1f03549dc197ebc27c2fd47d71cdb49ef7f83e5d85763476
-
SHA512
b5e2d10fdbb62c787cb5bcd039e2465185bc828b992bd78f20a808c771e44b6bc678f6d0e1dd262b2c254bc66a12a839b8bb8fd8aead41607f72104be7026451
-
SSDEEP
1536:N/mWrj/O0Z470Qhb68KwXFpfbuHJdvNKRYtpiByTtm74pgYMj20IA+v:N+SGkYhmwVpDu/UbQTtmEpgYMi0IA+v
Malware Config
Extracted
gafgyt
195.154.77.155:23
Signatures
-
Detected Gafgyt variant 1 IoCs
resource yara_rule sample family_gafgyt -
Gafgyt family
Files
-
4688ee802e5c602693bcc8cd3a8326a8.elf linux ppc