Behavioral task
behavioral1
Sample
1b11f19052555e09f71223554b740120d6e4685ae25db45f3f02beda3e687026.elf
Resource
debian9-armhf-20240226-en
2 signatures
150 seconds
General
-
Target
60d13017afdb1fb7895de5e9657668cc.bin
-
Size
79KB
-
MD5
126cc1b161619813dbb7bd592eef28cc
-
SHA1
6771c76f1ff9d7f2132cc2716f54a9b5b788b6a2
-
SHA256
146ce2034f91b7e90c58e2e38e3338d22cd41b353c4c28a4ccf050cd233021bb
-
SHA512
db60351a646be5f36a049539d031f9891c93acbb7b422e783a4b6a1dac33cbb57ff4452857778fb555d1107e7917ab590edd9df1e820f617d503398b257fd401
-
SSDEEP
1536:hJAPoDY3hXZC2+1ozHJn8gTFmV3uzehNhuBL+3KIllxkg6TJT:huoN2aozpT8uMJ3KixpyJT
Score
10/10
Malware Config
Extracted
Family
gafgyt
C2
91.92.244.11:19302
Signatures
-
Detected Gafgyt variant 1 IoCs
resource yara_rule static1/unpack001/1b11f19052555e09f71223554b740120d6e4685ae25db45f3f02beda3e687026.elf family_gafgyt -
Gafgyt family
Files
-
60d13017afdb1fb7895de5e9657668cc.bin.zip
Password: infected
-
1b11f19052555e09f71223554b740120d6e4685ae25db45f3f02beda3e687026.elf.elf linux arm