General
-
Target
50906b762464c48736b15b6966afa4f9c64613818bc0436607ed49e68057f47c.elf
-
Size
150KB
-
Sample
240702-brg7wsvdpj
-
MD5
b4f5de5f59a9786c78cf6a3fca88da5b
-
SHA1
4255755e8164286d45a7f51a88b94088ec68b4d7
-
SHA256
50906b762464c48736b15b6966afa4f9c64613818bc0436607ed49e68057f47c
-
SHA512
5ca7f4336ad61468f5b57387733209f5eb850915313946d3e26711b79d30b84b459e1922749c738119cb4a19a4b44976f78de5074d8ac486ce1ad34c2b9f254c
-
SSDEEP
3072:Tdbmn8aAEHqgSkano1DTAT5hWTGZWYxVlxXmpwTsL/QMyn:he8aAEHKkdDT65hWTGZWYxVldmpwTsLS
Behavioral task
behavioral1
Sample
50906b762464c48736b15b6966afa4f9c64613818bc0436607ed49e68057f47c.elf
Resource
debian12-armhf-20240221-en
Malware Config
Extracted
gafgyt
37.156.29.141:4258
Targets
-
-
Target
50906b762464c48736b15b6966afa4f9c64613818bc0436607ed49e68057f47c.elf
-
Size
150KB
-
MD5
b4f5de5f59a9786c78cf6a3fca88da5b
-
SHA1
4255755e8164286d45a7f51a88b94088ec68b4d7
-
SHA256
50906b762464c48736b15b6966afa4f9c64613818bc0436607ed49e68057f47c
-
SHA512
5ca7f4336ad61468f5b57387733209f5eb850915313946d3e26711b79d30b84b459e1922749c738119cb4a19a4b44976f78de5074d8ac486ce1ad34c2b9f254c
-
SSDEEP
3072:Tdbmn8aAEHqgSkano1DTAT5hWTGZWYxVlxXmpwTsL/QMyn:he8aAEHKkdDT65hWTGZWYxVldmpwTsLS
Score6/10-
Reads system routing table
Gets active network interfaces from /proc virtual filesystem.
-