Behavioral task
behavioral1
Sample
sh4.elf
Resource
ubuntu1804-amd64-20240729-en
Behavioral task
behavioral2
Sample
sh4.elf
Resource
debian9-armhf-20240418-en
Behavioral task
behavioral3
Sample
sh4.elf
Resource
debian9-mipsbe-20240611-en
Behavioral task
behavioral4
Sample
sh4.elf
Resource
debian9-mipsel-20240226-en
General
-
Target
sh4.elf
-
Size
136KB
-
MD5
fa9b50a0fc3e33af1a5b9c46147468a7
-
SHA1
6df43634759e6f0190a7df04a2e1d2f89aaf773a
-
SHA256
e470563c29bb29a69b8ca26dcb77c2a050240a8d6b0f8e2a139c8fb5b2c518ab
-
SHA512
c4358f43e178eaebf9f9f495ba711b1db757565e7d90e3ffdf108398e4f76e029bf01ce4d25dad6131da025dc54c76df461e39a30d4190af0745f0b89b7aadd8
-
SSDEEP
3072:B1E8x83QHjqmgjHmhQXna5hZttT5I7mAK0qW6MyoQ6:/E8q3QeXrHXna5hZvT5SmAK0qW6MyoQ6
Malware Config
Extracted
gafgyt
159.100.14.37:6060
Signatures
-
Detected Gafgyt variant 1 IoCs
Processes:
resource yara_rule sample family_gafgyt -
Gafgyt family
Files
-
sh4.elf.elf linux sh