× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 14c0c28648fa9cbc050080871b8647f57c299a5d112750634d4468647deeec93
File name: zbetcheckin_tracker_sshd
Detection ratio: 19 / 59
Analysis date: 2019-01-14 07:27:42 UTC ( 4 months ago ) View latest
Antivirus Result Update
AhnLab-V3 Linux/Gafgyt.Gen14 20190113
Antiy-AVL Trojan[Backdoor]/Linux.Gafgyt.af 20190113
Avast ELF:DDoS-Y [Trj] 20190114
Avast-Mobile ELF:DDoS-S [Trj] 20190113
AVG ELF:DDoS-Y [Trj] 20190114
ClamAV Unix.Trojan.Mirai-5607483-0 20190114
DrWeb Linux.BackDoor.Fgt.188 20190114
ESET-NOD32 a variant of Linux/Gafgyt.QE 20190113
Fortinet ELF/Gafgyt.BJ!tr 20190114
GData Linux.Trojan-DDoS.Lightaidra.A 20190114
Ikarus Trojan.Linux.Tsunami 20190114
Jiangmin Backdoor.Linux.bcks 20190114
Kaspersky HEUR:Backdoor.Linux.Gafgyt.af 20190114
McAfee Linux/Gafgyt.b 20190114
McAfee-GW-Edition Linux/Gafgyt.b 20190114
Tencent Backdoor.Linux.Gafgyt.afe 20190114
TrendMicro Possible_BASHLITE.SMLBN1 20190113
TrendMicro-HouseCall Possible_BASHLITE.SMLBN1 20190113
ZoneAlarm by Check Point HEUR:Backdoor.Linux.Gafgyt.af 20190114
Acronis 20190111
Ad-Aware 20190114
AegisLab 20190113
Alibaba 20180921
ALYac 20190114
Arcabit 20190114
Avira (no cloud) 20190113
AVware 20180925
Babable 20180918
Baidu 20190111
BitDefender 20190114
Bkav 20190108
CAT-QuickHeal 20190113
CMC 20190113
Comodo 20190114
CrowdStrike Falcon (ML) 20181023
Cybereason 20190109
Cylance 20190114
Cyren 20190114
eGambit 20190114
Emsisoft 20190114
Endgame 20181108
F-Prot 20190114
F-Secure 20190111
Sophos ML 20181128
K7AntiVirus 20190113
K7GW 20190113
Kingsoft 20190114
Malwarebytes 20190114
MAX 20190114
Microsoft 20190114
eScan 20190114
NANO-Antivirus 20190114
Palo Alto Networks (Known Signatures) 20190114
Panda 20190113
Qihoo-360 20190114
Rising 20190114
SentinelOne (Static ML) 20181223
Sophos AV 20190114
SUPERAntiSpyware 20190109
Symantec 20190113
TACHYON 20190113
TheHacker 20190113
TotalDefense 20190113
Trapmine 20190103
Trustlook 20190114
VBA32 20190111
VIPRE 20190114
ViRobot 20190113
Webroot 20190114
Yandex 20190111
Zillya 20190111
Zoner 20190114
The file being studied is an ELF! More specifically, it is a EXEC (Executable file) ELF for Unix systems running on MIPS R3000 machines.
ELF Header
Class ELF32
Data 2's complement, little endian
Header version 1 (current)
OS ABI UNIX - System V
ABI version 0
Object file type EXEC (Executable file)
Required architecture MIPS R3000
Object file version 0x1
Program headers 4
Section headers 20
ELF sections
ELF Segments
.reginfo
.reginfo
.init
.text
.fini
.rodata
.eh_frame
.ctors
.dtors
.jcr
.data
.got
.sbss
.bss
Segment without sections
Imported symbols
Exported symbols
ExifTool file metadata
MIMEType
application/octet-stream

CPUByteOrder
Little endian

CPUArchitecture
32 bit

FileType
ELF executable

ObjectFileType
Executable file

CPUType
MIPS R3000

File identification
MD5 b1fa9a0d1a7c13640c1ce09d1fcc81af
SHA1 58d67d453342972a5d2375625abce86c68ca0a35
SHA256 14c0c28648fa9cbc050080871b8647f57c299a5d112750634d4468647deeec93
ssdeep
3072:NQpSgBHASRretJ8au49QuhswgwVEjEmarTA6KrmCyFjD:NQpv5RretJ8au4l9qjEmarTA6KrmCyFn

File size 167.6 KB ( 171608 bytes )
File type ELF
Magic literal
ELF 32-bit LSB executable, MIPS, MIPS-I version 1 (SYSV), statically linked, not stripped

TrID ELF Executable and Linkable format (generic) (100.0%)
Tags
elf

VirusTotal metadata
First submission 2019-01-14 07:27:42 UTC ( 4 months ago )
Last submission 2019-01-18 02:05:41 UTC ( 4 months ago )
File names sshd
14c0c28648fa9cbc050080871b8647f57c299a5d112750634d4468647deeec93
b1fa9a0d1a7c13640c1ce09d1fcc81af
zbetcheckin_tracker_sshd
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!