General
-
Target
95fd910c7f1fa221c4f578f3b9aac72f.elf
-
Size
150KB
-
Sample
240705-jrjdysxdmc
-
MD5
95fd910c7f1fa221c4f578f3b9aac72f
-
SHA1
5e3dbab38cdb011c17c70685dcaefb6182bf97ab
-
SHA256
60487815787f31f8e6da0f5ddf1bfa2ad4e4b90095e893d04b47e19d4129bfb2
-
SHA512
12e6174099825a8b44c4b0970d0fde6f941f9f6e08b4489343cdcf2e937ffec31b51ec39ac1e14670a01f7a0de313bbba6c3a72ddfe6cfb00fc12a902e51abc5
-
SSDEEP
3072:Tdbmn8aAEHqgSkano1DTAX5hWTGU2WV7lxXmpwTsL/QMyn:he8aAEHKkdDT25hWTGU2WV7ldmpwTsLS
Behavioral task
behavioral1
Sample
95fd910c7f1fa221c4f578f3b9aac72f.elf
Resource
debian9-armhf-20240418-en
Malware Config
Extracted
gafgyt
164.90.201.215:4258
Targets
-
-
Target
95fd910c7f1fa221c4f578f3b9aac72f.elf
-
Size
150KB
-
MD5
95fd910c7f1fa221c4f578f3b9aac72f
-
SHA1
5e3dbab38cdb011c17c70685dcaefb6182bf97ab
-
SHA256
60487815787f31f8e6da0f5ddf1bfa2ad4e4b90095e893d04b47e19d4129bfb2
-
SHA512
12e6174099825a8b44c4b0970d0fde6f941f9f6e08b4489343cdcf2e937ffec31b51ec39ac1e14670a01f7a0de313bbba6c3a72ddfe6cfb00fc12a902e51abc5
-
SSDEEP
3072:Tdbmn8aAEHqgSkano1DTAX5hWTGU2WV7lxXmpwTsL/QMyn:he8aAEHKkdDT25hWTGU2WV7ldmpwTsLS
Score6/10-
Reads system routing table
Gets active network interfaces from /proc virtual filesystem.
-