Behavioral task
behavioral1
Sample
7aebc6a86fda69a4889e18ff8d7d1b6b0bd227070793298450c9ec107f66fb41.elf
Resource
debian9-armhf-20240418-en
debian-9-armhf
3 signatures
150 seconds
General
-
Target
7aebc6a86fda69a4889e18ff8d7d1b6b0bd227070793298450c9ec107f66fb41.elf
-
Size
160KB
-
MD5
2a45d315342063a6ca92c63f5f77287a
-
SHA1
94dbc030cbb625fea324b1dd9838e3ba926bb5a3
-
SHA256
7aebc6a86fda69a4889e18ff8d7d1b6b0bd227070793298450c9ec107f66fb41
-
SHA512
ed6e8126a68212aa2c39a7696c4c508808c53e98ca88978b89c59c375c1af44d084ce6937406da6c358ecd96f17034d09bc8b637e7268330ba2643f29ff5f93f
-
SSDEEP
3072:EIrBzuvjgC/m/PyH/DrGi3ax5tNhGdHEq2c9etJ8add9Qzhs3iCdjeK8PvmyOQ0G:Er7rGgaTtuF2c9etJ8addQ+iCdjeHvm4
Score
10/10
Malware Config
Extracted
Family
gafgyt
C2
93.123.85.201:23
Signatures
-
Detected Gafgyt variant 1 IoCs
Processes:
resource yara_rule sample family_gafgyt -
Gafgyt family
Files
-
7aebc6a86fda69a4889e18ff8d7d1b6b0bd227070793298450c9ec107f66fb41.elf.elf linux arm