Behavioral task
behavioral1
Sample
aea6020a1c5fffd2ed5ffd77d0853770_JaffaCakes118
Resource
debian9-armhf-20240418-en
0 signatures
150 seconds
General
-
Target
aea6020a1c5fffd2ed5ffd77d0853770_JaffaCakes118
-
Size
176KB
-
MD5
aea6020a1c5fffd2ed5ffd77d0853770
-
SHA1
fc5ef17c5b433475c90da3d49525bae2b91796e4
-
SHA256
d17fca8840887de2e7b3c42f49432d3b64958600cfb491776d01c102d6d8cb0b
-
SHA512
ce0c3d80d962ae63ec565106c77a04306527d32eae6d8bba56c91d6ec636369f0e6f995213cf8c748ced519b60cc228876399cfb2657be33e055444ca0987846
-
SSDEEP
3072:MV/Yb/dnp+eQPGX+/WTva66bzmJbx+6zcSLRtBUI45hL4k3zVbYM/9U0IYmmw3BL:L+6va66bzUbx+aRtBu5hL4k3z+M/9U0m
Score
10/10
Malware Config
Extracted
Family
gafgyt
C2
94.242.58.245:48263
Signatures
-
Detected Gafgyt variant 1 IoCs
Processes:
resource yara_rule sample family_gafgyt -
Gafgyt family
Files
-
aea6020a1c5fffd2ed5ffd77d0853770_JaffaCakes118.elf linux arm