General
-
Target
64a141d26a6fb30e443a0b60cb40e07aee60ed3502842aaf3ffe3f8dc9560b21.elf
-
Size
176KB
-
Sample
240706-br6v9a1glm
-
MD5
731ba759eb9ce2d4876703e4dcbbf40e
-
SHA1
9d2c148bf8c93c120f59da96a52262d47e8e7fbc
-
SHA256
64a141d26a6fb30e443a0b60cb40e07aee60ed3502842aaf3ffe3f8dc9560b21
-
SHA512
aa9c7e1cb073d906403a70f2e6e39b8243a0fe2bc78f53f09307782d461901a8c177b2ff92ce9a37a407e249648e5f799d24632e82b8159e616848c272d3b1db
-
SSDEEP
3072:9fs8Tmeg7aqtCUtS7Rz91eLZIPTH/jciunxVgDnmKwMkZ/CIn:9fsL7aqtCUCRCLZOTH/jciwxVWmKwMkt
Behavioral task
behavioral1
Sample
64a141d26a6fb30e443a0b60cb40e07aee60ed3502842aaf3ffe3f8dc9560b21.elf
Resource
debian9-armhf-20240418-en
Malware Config
Extracted
gafgyt
5.59.248.211:6982
Targets
-
-
Target
64a141d26a6fb30e443a0b60cb40e07aee60ed3502842aaf3ffe3f8dc9560b21.elf
-
Size
176KB
-
MD5
731ba759eb9ce2d4876703e4dcbbf40e
-
SHA1
9d2c148bf8c93c120f59da96a52262d47e8e7fbc
-
SHA256
64a141d26a6fb30e443a0b60cb40e07aee60ed3502842aaf3ffe3f8dc9560b21
-
SHA512
aa9c7e1cb073d906403a70f2e6e39b8243a0fe2bc78f53f09307782d461901a8c177b2ff92ce9a37a407e249648e5f799d24632e82b8159e616848c272d3b1db
-
SSDEEP
3072:9fs8Tmeg7aqtCUtS7Rz91eLZIPTH/jciunxVgDnmKwMkZ/CIn:9fsL7aqtCUCRCLZOTH/jciwxVWmKwMkt
Score6/10-
Reads system routing table
Gets active network interfaces from /proc virtual filesystem.
-