Behavioral task
behavioral1
Sample
d6eefeb43f024bb4a3bfe9fb8d27e097fa12a718f1012b502695506ce0e70add.elf
Resource
ubuntu1804-amd64-20240226-en
Behavioral task
behavioral2
Sample
d6eefeb43f024bb4a3bfe9fb8d27e097fa12a718f1012b502695506ce0e70add.elf
Resource
debian9-armhf-20240226-en
Behavioral task
behavioral3
Sample
d6eefeb43f024bb4a3bfe9fb8d27e097fa12a718f1012b502695506ce0e70add.elf
Resource
debian9-mipsbe-20240226-en
Behavioral task
behavioral4
Sample
d6eefeb43f024bb4a3bfe9fb8d27e097fa12a718f1012b502695506ce0e70add.elf
Resource
debian9-mipsel-20240226-en
General
-
Target
93711b65b669db3db465caa4d185b187.bin
-
Size
45KB
-
MD5
a56bdccee9fad556a1c6da76f3362c12
-
SHA1
024ebbf1d13aa3a948e4982edfdbc4225c7f2446
-
SHA256
31445d69342ce88612d28d296cef8bc059589c1c85dff16a873db476d98030be
-
SHA512
b3e946b3b182df39094baf655f31edd8f8a27c31bcc9da7a55d65d6cd747550c2f15776157f89d518307e6f33aede0b14168330212869bedddd8efcdc46f7241
-
SSDEEP
768:KcW1pcR+cIpLK41vlHM4CE20BBvAE4QGxkL0CGBf7q+zn71fFRhbJTzPaha8rd:i/e+VpOQB6JMBr4eL0C4717TzPak8rd
Malware Config
Extracted
gafgyt
93.123.85.170:666
Signatures
-
Detected Gafgyt variant 1 IoCs
Processes:
resource yara_rule static1/unpack001/d6eefeb43f024bb4a3bfe9fb8d27e097fa12a718f1012b502695506ce0e70add.elf family_gafgyt -
Gafgyt family
Files
-
93711b65b669db3db465caa4d185b187.bin.zip
Password: infected
-
d6eefeb43f024bb4a3bfe9fb8d27e097fa12a718f1012b502695506ce0e70add.elf.elf linux ppc