× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 1bf953862e0ba56144f3469a7915d9e25737a7a75d4d8e64753c9e4ecac96cfc
File name: mirai.sh4
Detection ratio: 2 / 54
Analysis date: 2016-09-01 04:02:15 UTC ( 6 months, 3 weeks ago ) View latest
Antivirus Result Update
AVG Linux/Fgt.CA 20160831
ESET-NOD32 a variant of Linux/Gafgyt.SE 20160831
Ad-Aware 20160901
AegisLab 20160901
AhnLab-V3 20160901
Alibaba 20160901
Antiy-AVL 20160901
Arcabit 20160901
Avast 20160901
Avira (no cloud) 20160831
AVware 20160901
Baidu 20160831
BitDefender 20160901
Bkav 20160831
CAT-QuickHeal 20160831
ClamAV 20160901
CMC 20160830
Comodo 20160901
Cyren 20160901
DrWeb 20160901
Emsisoft 20160901
F-Prot 20160901
F-Secure 20160901
Fortinet 20160901
GData 20160901
Ikarus 20160831
Jiangmin 20160901
K7AntiVirus 20160831
K7GW 20160901
Kaspersky 20160901
Kingsoft 20160901
Malwarebytes 20160901
McAfee 20160901
McAfee-GW-Edition 20160901
Microsoft 20160901
eScan 20160901
NANO-Antivirus 20160831
nProtect 20160901
Panda 20160831
Qihoo-360 20160901
Rising 20160901
Sophos 20160831
SUPERAntiSpyware 20160831
Symantec 20160901
Tencent 20160901
TheHacker 20160829
TrendMicro 20160901
TrendMicro-HouseCall 20160901
VBA32 20160831
VIPRE 20160831
ViRobot 20160901
Yandex 20160831
Zillya 20160831
Zoner 20160901
The file being studied is an ELF! More specifically, it is a EXEC (Executable file) ELF for Unix systems running on <unknown> machines.
ELF Header
Class ELF32
Data 2's complement, little endian
Header version 1 (current)
OS ABI UNIX - System V
ABI version 0
Object file type EXEC (Executable file)
Required architecture <unknown>
Object file version 0x1
Program headers 3
Section headers 10
ELF sections
ELF Segments
.init
.text
.fini
.rodata
.ctors
.dtors
.data
.bss
Segment without sections
ExifTool file metadata
MIMEType
application/octet-stream

CPUByteOrder
Little endian

CPUArchitecture
32 bit

FileType
ELF executable

ObjectFileType
Executable file

CPUType
SuperH

File identification
MD5 030159a814a533f30a3e17fe757586e6
SHA1 3e78e8acd9a98df8a70963b056fc3664d80ed64e
SHA256 1bf953862e0ba56144f3469a7915d9e25737a7a75d4d8e64753c9e4ecac96cfc
ssdeep
768:adHMdubKHq3yNHZo0Faaq+JLSSBpjH+j7O8P+aY4Y9OA9:GHFKHq3Y54aqMBpjH6o9r9

File size 48.6 KB ( 49788 bytes )
File type ELF
Magic literal
ELF 32-bit LSB executable, Renesas SH, version 1 (SYSV), statically linked, stripped

TrID ELF Executable and Linkable format (generic) (100.0%)
Tags
elf

VirusTotal metadata
First submission 2016-09-01 04:02:15 UTC ( 6 months, 3 weeks ago )
Last submission 2016-10-24 07:51:23 UTC ( 5 months ago )
File names mirai.sh4
file_9.SuperH.ELF
mirai.sh4
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!