Behavioral task
behavioral1
Sample
s-h.4-.Sakura.elf
Resource
ubuntu1804-amd64-20240611-en
Behavioral task
behavioral2
Sample
s-h.4-.Sakura.elf
Resource
debian9-armhf-20240611-en
Behavioral task
behavioral3
Sample
s-h.4-.Sakura.elf
Resource
debian9-mipsbe-20240611-en
Behavioral task
behavioral4
Sample
s-h.4-.Sakura.elf
Resource
debian9-mipsel-20240418-en
General
-
Target
s-h.4-.Sakura.elf
-
Size
86KB
-
MD5
9219b7d51f89a92531628efba765d89d
-
SHA1
169c97123cce1d8c5ed9f2c119b079db0c2f95c4
-
SHA256
ce249b429e94183040b15be8da14222d3b213cde458f3d3206561aac3dad41ff
-
SHA512
688e6766eb290b2c6f39bce4da0ca91cd6945b005180cae346def600ea58fe2f664e2d6196c90b030d2c12d5507c8740aeb976b9759d5065adde975863e28d48
-
SSDEEP
1536:ClN9YyOXmMSr4k9dgGwKGg0CfjGJCFdojMyTRLmkxVqOEeofzee:g7OXmMSr4krG3JyBQLmkxVqODofzee
Malware Config
Extracted
gafgyt
31.172.87.139:12345
Signatures
-
Detected Gafgyt variant 1 IoCs
Processes:
resource yara_rule sample family_gafgyt -
Gafgyt family
Files
-
s-h.4-.Sakura.elf.elf linux sh