General
-
Target
7c9022960554e5a116eb29ae20cff194.elf
-
Size
204KB
-
Sample
240331-hfrqhsga57
-
MD5
7c9022960554e5a116eb29ae20cff194
-
SHA1
8033148c58544adb7cc5d2d1bd77ffa44be14fa5
-
SHA256
00f31f3727a7ec7db813787ec7aa19f3605d4705e7737ed035b2f8566f31d901
-
SHA512
8880887ee0ae68c94c81688826cb81698e8f5d300fff393d8078d6aaf963e814dcc990644701b4bf9e745bc8592f99bca032bea603e4d1320a68deb9758b3101
-
SSDEEP
6144:FZzyacCwXJ4DbpW0v25hbL6+uM/9Ocgym0wfB5RyAn:FZzyacCwXJ4gt5hbvf/dgym0mB5RyAn
Behavioral task
behavioral1
Sample
7c9022960554e5a116eb29ae20cff194.elf
Resource
debian9-armhf-20240226-en
Malware Config
Extracted
gafgyt
103.35.190.189:666
Targets
-
-
Target
7c9022960554e5a116eb29ae20cff194.elf
-
Size
204KB
-
MD5
7c9022960554e5a116eb29ae20cff194
-
SHA1
8033148c58544adb7cc5d2d1bd77ffa44be14fa5
-
SHA256
00f31f3727a7ec7db813787ec7aa19f3605d4705e7737ed035b2f8566f31d901
-
SHA512
8880887ee0ae68c94c81688826cb81698e8f5d300fff393d8078d6aaf963e814dcc990644701b4bf9e745bc8592f99bca032bea603e4d1320a68deb9758b3101
-
SSDEEP
6144:FZzyacCwXJ4DbpW0v25hbL6+uM/9Ocgym0wfB5RyAn:FZzyacCwXJ4gt5hbvf/dgym0mB5RyAn
Score6/10-
Reads system routing table
Gets active network interfaces from /proc virtual filesystem.
-