Behavioral task
behavioral1
Sample
assailant.arm5.elf
Resource
debian9-armhf-20240226-en
debian-9-armhf
0 signatures
150 seconds
General
-
Target
assailant.arm5.elf
-
Size
176KB
-
MD5
09437f05633c1499431a68089ce17a35
-
SHA1
743207d94bb12672ed2308dba790726d2e0c9e7c
-
SHA256
4d8c463e068c7904d540e8a8d7849f892aa73685d1a2b768eb6a4b66ce43b05a
-
SHA512
5451600e9a081a71ff3c78a6c5c93fc903ca4e7d473960534e526f4306038ab60d3d465dd5180aec002b9373e1061287933ccea0126b3eb923ad8d12a86c6382
-
SSDEEP
3072:EV/Yb/dnp+eQPGJ+OHT+aDfn/uyR6F2bEbD1ILm4B5LQk3ndwjV7cjlrmmw3Bq/b:d+2+aDfn/9R6FX1I9B5LQk3ndwjV7cJ9
Score
10/10
Malware Config
Extracted
Family
gafgyt
C2
103.54.153.94:42516
Signatures
-
Detected Gafgyt variant 1 IoCs
resource yara_rule sample family_gafgyt -
Gafgyt family
Files
-
assailant.arm5.elf.elf linux arm