Behavioral task
behavioral1
Sample
7a098e8193556a240cb09fc3dc0937e462cc5bb056fbf071a500c1554481e466.elf
Resource
ubuntu1804-amd64-20240226-en
Behavioral task
behavioral2
Sample
7a098e8193556a240cb09fc3dc0937e462cc5bb056fbf071a500c1554481e466.elf
Resource
debian9-armhf-20240418-en
Behavioral task
behavioral3
Sample
7a098e8193556a240cb09fc3dc0937e462cc5bb056fbf071a500c1554481e466.elf
Resource
debian9-mipsbe-20240226-en
Behavioral task
behavioral4
Sample
7a098e8193556a240cb09fc3dc0937e462cc5bb056fbf071a500c1554481e466.elf
Resource
debian9-mipsel-20240418-en
General
-
Target
5f47f43b8928e2539b7635c610479d9c.bin
-
Size
45KB
-
MD5
c3f7aa6e2d31d0016bcddb3ecb65767d
-
SHA1
09593211abe3db3565931048d5d5bb9220f83da2
-
SHA256
262ae102bf852636ff527618daa31e4d8b48c783108bb67c926b069291788b47
-
SHA512
4fff6083183646df72f13bbaf032e805340c35fafcaf0e6be8c388ff24cd64d3926fc2f1afe96836ae601013a55ff747af8ca9cda8266ab3e724df1ef9eb27f4
-
SSDEEP
768:HDfpSErFMDSu9OgWPKrEruyksnEfukxXUkg3kCJ50w1jthRnJlXb6yf:HDMqIFw9ubsKuqUkg3kCJ50YhRn3eq
Malware Config
Extracted
gafgyt
147.185.221.19:30455
Signatures
-
Detected Gafgyt variant 1 IoCs
resource yara_rule static1/unpack001/7a098e8193556a240cb09fc3dc0937e462cc5bb056fbf071a500c1554481e466.elf family_gafgyt -
Gafgyt family
Files
-
5f47f43b8928e2539b7635c610479d9c.bin.zip
Password: infected
-
7a098e8193556a240cb09fc3dc0937e462cc5bb056fbf071a500c1554481e466.elf.elf linux