× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 298d8e9379aa48154093f92bd9b432d2fca44579f351e6df7533420213cb8916
File name: 343
Detection ratio: 8 / 59
Analysis date: 2018-08-29 03:35:12 UTC ( 5 months, 4 weeks ago ) View latest
Antivirus Result Update
DrWeb Linux.BackDoor.Tsunami.970 20180829
ESET-NOD32 a variant of Linux/Mirai.AE 20180828
Fortinet ELF/Mirai.AT!tr 20180829
Kaspersky HEUR:Backdoor.Linux.Mirai.b 20180829
Qihoo-360 Win32/Backdoor.6f4 20180829
Symantec Linux.Mirai 20180829
TrendMicro-HouseCall TROJ_GEN.R002H0CHT18 20180829
ZoneAlarm by Check Point HEUR:Backdoor.Linux.Mirai.b 20180829
Ad-Aware 20180829
AegisLab 20180829
AhnLab-V3 20180828
Alibaba 20180713
ALYac 20180829
Antiy-AVL 20180829
Arcabit 20180829
Avast 20180829
Avast-Mobile 20180829
AVG 20180829
Avira (no cloud) 20180829
AVware 20180823
Babable 20180822
Baidu 20180828
BitDefender 20180829
Bkav 20180828
CAT-QuickHeal 20180828
ClamAV 20180828
CMC 20180828
Comodo 20180829
CrowdStrike Falcon (ML) 20180723
Cybereason 20180308
Cylance 20180829
Cyren 20180829
eGambit 20180829
Emsisoft 20180829
Endgame 20180730
F-Prot 20180829
F-Secure 20180829
GData 20180829
Ikarus 20180828
Sophos ML 20180717
Jiangmin 20180829
K7AntiVirus 20180829
K7GW 20180828
Kingsoft 20180829
Malwarebytes 20180828
MAX 20180829
McAfee 20180829
McAfee-GW-Edition 20180829
Microsoft 20180829
eScan 20180829
NANO-Antivirus 20180829
Palo Alto Networks (Known Signatures) 20180829
Panda 20180828
Rising 20180829
SentinelOne (Static ML) 20180701
Sophos AV 20180829
SUPERAntiSpyware 20180829
Symantec Mobile Insight 20180822
TACHYON 20180829
Tencent 20180829
TheHacker 20180829
TotalDefense 20180828
TrendMicro 20180829
Trustlook 20180829
VBA32 20180828
VIPRE 20180829
ViRobot 20180828
Webroot 20180829
Yandex 20180827
Zillya 20180828
Zoner 20180828
The file being studied is an ELF! More specifically, it is a EXEC (Executable file) ELF for Unix systems running on MIPS R3000 machines.
ELF Header
Class ELF32
Data 2's complement, little endian
Header version 1 (current)
OS ABI UNIX - System V
ABI version 0
Object file type EXEC (Executable file)
Required architecture MIPS R3000
Object file version 0x1
Program headers 2
Section headers 0
Packers identified
upx
ELF Segments
Segment without sections
Segment without sections
ExifTool file metadata
MIMEType
application/octet-stream

CPUByteOrder
Little endian

CPUArchitecture
32 bit

FileType
ELF executable

ObjectFileType
Executable file

CPUType
MIPS R3000

File identification
MD5 f39c659c912e9403a08d14d0c8b515c0
SHA1 bdeca2c2537234d1aef986046b3855be75d77318
SHA256 298d8e9379aa48154093f92bd9b432d2fca44579f351e6df7533420213cb8916
ssdeep
768:kR6gTx3NuxypLCVnd0CFeaLqTV/jsBZbhYFpBO3eNa9rwpWY:kRhNuxypLeixp/gaPI3eNOrwf

File size 39.3 KB ( 40224 bytes )
File type ELF
Magic literal
ELF 32-bit LSB executable, MIPS, MIPS-I version 1 (SYSV), statically linked, stripped

TrID ELF Executable and Linkable format (generic) (100.0%)
Tags
elf upx

VirusTotal metadata
First submission 2018-08-28 23:13:58 UTC ( 5 months, 4 weeks ago )
Last submission 2018-08-29 10:24:08 UTC ( 5 months, 4 weeks ago )
File names izuku.mpsl
343
34
22
97
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!