General
-
Target
6201c7766b4952767ed2b58b83a0ca40.elf
-
Size
112KB
-
Sample
240705-jvzkcavdnk
-
MD5
6201c7766b4952767ed2b58b83a0ca40
-
SHA1
3392b6f9abe7c838ce19455997760df811441abd
-
SHA256
e966ef51c6efe731b2edaa628247fbdbf435338f35b7c7fe6c74157ee70672b5
-
SHA512
6cb9e813f051b90c0185a8eb09efb7449006455ddf692ec9546fa8c06c4027a7feb4cae51fc7b0b2d7024ee6a527b0e704fea20b4bfa4745fa73d4888dd9b047
-
SSDEEP
3072:vhfviOui5FCRSUaVejY68tO5hqSr3hGm0Qxu1bXWIn:pvfUQVejYXtO5hqSr3hGm0Qxu1rWIn
Behavioral task
behavioral1
Sample
6201c7766b4952767ed2b58b83a0ca40.elf
Resource
debian9-armhf-20240611-en
Malware Config
Extracted
gafgyt
164.90.201.215:4258
Targets
-
-
Target
6201c7766b4952767ed2b58b83a0ca40.elf
-
Size
112KB
-
MD5
6201c7766b4952767ed2b58b83a0ca40
-
SHA1
3392b6f9abe7c838ce19455997760df811441abd
-
SHA256
e966ef51c6efe731b2edaa628247fbdbf435338f35b7c7fe6c74157ee70672b5
-
SHA512
6cb9e813f051b90c0185a8eb09efb7449006455ddf692ec9546fa8c06c4027a7feb4cae51fc7b0b2d7024ee6a527b0e704fea20b4bfa4745fa73d4888dd9b047
-
SSDEEP
3072:vhfviOui5FCRSUaVejY68tO5hqSr3hGm0Qxu1bXWIn:pvfUQVejYXtO5hqSr3hGm0Qxu1rWIn
Score6/10-
Reads system routing table
Gets active network interfaces from /proc virtual filesystem.
-