Behavioral task
behavioral1
Sample
hidakibest.arm7.elf
Resource
debian9-armhf-20240611-en
debian-9-armhf
2 signatures
150 seconds
General
-
Target
hidakibest.arm7.elf
-
Size
150KB
-
MD5
c4c247bfa31bd6349ca80fe88969c485
-
SHA1
3bdd01f7748fdaddfd5481ede37f88cb02148ee2
-
SHA256
a62253013925e16c96bf1006e24c6c90b74d9f02af2496ecdb5462c902429ab6
-
SHA512
08a7bb8ab0155dff797d81a1551c949e4caead43fe9a8cb277855e4cb7c0d24b31f2398590714d20a27fe9c271f7dd5008837398de8cd92fa656f70c07269fea
-
SSDEEP
3072:Tdbmn8aAEHqgSkano1DTA85hWTGHJWM/9lxXmpwTsL/QMyn:he8aAEHKkdDTR5hWTGHIM/9ldmpwTsLS
Score
10/10
Malware Config
Extracted
Family
gafgyt
C2
212.80.18.246:4258
Signatures
-
Detected Gafgyt variant 1 IoCs
resource yara_rule sample family_gafgyt -
Gafgyt family
Files
-
hidakibest.arm7.elf.elf linux arm