Behavioral task
behavioral1
Sample
s-h.4-.ISIS.elf
Resource
ubuntu1804-amd64-20240611-en
Behavioral task
behavioral2
Sample
s-h.4-.ISIS.elf
Resource
debian9-armhf-20240611-en
Behavioral task
behavioral3
Sample
s-h.4-.ISIS.elf
Resource
debian9-mipsbe-20240611-en
Behavioral task
behavioral4
Sample
s-h.4-.ISIS.elf
Resource
debian9-mipsel-20240418-en
General
-
Target
s-h.4-.ISIS.elf
-
Size
92KB
-
MD5
79d1a5eb6c8794fe0c59c4d5350fa1c9
-
SHA1
c6f74d3c9240d4f006bae3c217fb26eea7d17d03
-
SHA256
5891a941ef1ecc0f63647fce36d463ffb608f262af4b8feb983d6cde66d003fe
-
SHA512
65091a5ca29c8fe644847191fb937f8e24556459a80dd0d86d20c7147533415f0d5934241ee852e93fdcf2e97432e3c656b8fff57b1ea241b27ad113a349b0b6
-
SSDEEP
1536:3g7+h0Ik9naHoHGaKRmIuZPJo8efJN6CC4mW1pLmW49VquLeefkcX:I1IkZooHG9R6PJo/6CHFfLm79Vquqef/
Malware Config
Extracted
gafgyt
185.78.76.132:839
Signatures
-
Detected Gafgyt variant 1 IoCs
Processes:
resource yara_rule sample family_gafgyt -
Gafgyt family
Files
-
s-h.4-.ISIS.elf.elf linux sh