Behavioral task
behavioral1
Sample
c1c0c3f6b34b74957cae48904043931675d1c3e0d3606dc791083263938978db.elf
Resource
ubuntu1804-amd64-20240418-en
Behavioral task
behavioral2
Sample
c1c0c3f6b34b74957cae48904043931675d1c3e0d3606dc791083263938978db.elf
Resource
debian9-armhf-20240418-en
Behavioral task
behavioral3
Sample
c1c0c3f6b34b74957cae48904043931675d1c3e0d3606dc791083263938978db.elf
Resource
debian9-mipsbe-20240226-en
Behavioral task
behavioral4
Sample
c1c0c3f6b34b74957cae48904043931675d1c3e0d3606dc791083263938978db.elf
Resource
debian9-mipsel-20240226-en
General
-
Target
30a33e0bd5241ce82c2620dc887ed4f5.bin
-
Size
51KB
-
MD5
8b411828e553c23ab65bfa1d118ac9f0
-
SHA1
1533155fc0dbadbebac15fd2ca3a73bc0a355454
-
SHA256
cc6b1deeb1a7bf6a050d447b234538a7a0b59f0427cfb4936066f669dde0164b
-
SHA512
cb64c05d631f15b2f7c30fd626ce3289df01b282d2585836206a727465fe294a7b6983cd1548dc7f0d0a58e0235684388e45f37da1281a70659feee1f14958fb
-
SSDEEP
768:Jn1XkwWtnwqK14Gm9kxzzo/SEq0TGCVqJc513g8tokZLK6DEJvXtQpcivAMCW4g1:JBk3nTe1odTTVq0ht5ZmG12qCLBWL
Malware Config
Extracted
gafgyt
95.174.91.180:4258
Signatures
-
Detected Gafgyt variant 1 IoCs
resource yara_rule static1/unpack001/c1c0c3f6b34b74957cae48904043931675d1c3e0d3606dc791083263938978db.elf family_gafgyt -
Gafgyt family
Files
-
30a33e0bd5241ce82c2620dc887ed4f5.bin.zip
Password: infected
-
c1c0c3f6b34b74957cae48904043931675d1c3e0d3606dc791083263938978db.elf.elf linux sparc