Behavioral task
behavioral1
Sample
cb3bd022e40c823cee0dae69738dc7c117f18d14ee18d2210dabac8a77ecadb3.elf
Resource
debian9-armhf-20231215-en
2 signatures
150 seconds
General
-
Target
207352df53228e232526f2451afc79ff.bin
-
Size
43KB
-
MD5
b637cf599123c728a2740125e96eca73
-
SHA1
d1cf1f48b35f0eb2f1be711bcee66896672ffb5b
-
SHA256
0e894dcfb85d69a048df6456873de05f0f6ce89bfbf777d8fdab2e88a8238dc1
-
SHA512
80efc056d0b64485e96ac95ee62e741d8a07b9cd3936661640c5ff519f8bc4cff904726a33176f2ada18d0eaab9a82de4148f0ae99fb137e4d806e2dde49b92d
-
SSDEEP
768:LPxaytHUuY1RJJZAcW5KC7F9z/ks9ZAmKjhnDLJ/Mym806+p1fV2UWcOs69kEGP:LPxHtHUuYx4XJ/HjkjxDLyXAC1f6JkFP
Score
10/10
Malware Config
Extracted
Family
gafgyt
C2
51.250.72.163:839
Signatures
-
Detected Gafgyt variant 1 IoCs
resource yara_rule static1/unpack001/cb3bd022e40c823cee0dae69738dc7c117f18d14ee18d2210dabac8a77ecadb3.elf family_gafgyt -
Gafgyt family
Files
-
207352df53228e232526f2451afc79ff.bin.zip
Password: infected
-
cb3bd022e40c823cee0dae69738dc7c117f18d14ee18d2210dabac8a77ecadb3.elf.elf linux arm