× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 345a86f839372db0ee7367be0b9df2d2d844cef406407695a2f869d6b3380ece
File name: mod_chart_proxy
Detection ratio: 28 / 45
Analysis date: 2013-03-17 20:01:44 UTC ( 3 years, 11 months ago ) View latest
Antivirus Result Update
AVG Generic6_c.CLGW 20130317
AntiVir LINUX/Agent.E 20130317
Avast ELF:Apmod-B [Trj] 20130317
BitDefender Backdoor.Linux.Agent.E 20130317
Comodo UnclassifiedMalware 20130317
DrWeb Linux.Iframe.1 20130317
ESET-NOD32 Linux/Chapro.A 20130317
Emsisoft Backdoor.Linux.Apmod (A) 20130317
F-Secure Backdoor.Linux.Agent.E 20130317
GData Backdoor.Linux.Agent.E 20130317
Ikarus Backdoor.Linux.Apmod 20130317
Jiangmin Backdoor/Linux.fs 20130317
K7AntiVirus Trojan 20130315
Kaspersky HEUR:Backdoor.Linux.Apmod.gen 20130317
McAfee Linux/Chapro 20130317
McAfee-GW-Edition Linux/Chapro 20130317
eScan Backdoor.Linux.Agent.E 20130317
Microsoft Backdoor:Linux/Apmod.gen!A 20130317
NANO-Antivirus Trojan.Apmod.bfnfeo 20130317
Norman Chapro.A 20130317
PCTools Malware.Linux-Chapro 20130315
Sophos Troj/Apmod-D 20130317
Symantec Linux.Chapro 20130317
TrendMicro ELF_CHAPRO.A 20130317
TrendMicro-HouseCall ELF_CHAPRO.A 20130317
VBA32 Backdoor.Linux.Apmod.gen 20130315
ViRobot Linux.A.Apmod.39176 20130317
nProtect Backdoor.Linux.Agent.E 20130317
Yandex 20130317
AhnLab-V3 20130317
Antiy-AVL 20130317
ByteHero 20130315
CAT-QuickHeal 20130316
ClamAV 20130317
Commtouch 20130317
F-Prot 20130317
Fortinet 20130317
Kingsoft 20130311
Malwarebytes 20130317
Panda 20130317
SUPERAntiSpyware 20130317
TheHacker 20130315
TotalDefense 20130317
VIPRE 20130317
eSafe 20130313
The file being studied is an ELF! More specifically, it is a DYN (Shared object file) ELF for Unix systems running on Advanced Micro Devices X86-64 machines.
ELF Header
Class ELF64
Data 2's complement, little endian
Header version 1 (current)
OS ABI UNIX - System V
ABI version 0
Object file type DYN (Shared object file)
Required architecture Advanced Micro Devices X86-64
Object file version 0x1
Program headers 5
Section headers 26
ELF sections
ELF Segments
.gnu.hash
.dynsym
.dynstr
.gnu.version
.gnu.version_r
.rela.dyn
.rela.plt
.init
.plt
.text
.fini
.rodata
.eh_frame_hdr
.eh_frame
.ctors
.dtors
.jcr
.data.rel.ro
.dynamic
.got
.got.plt
.data
.bss
.dynamic
.eh_frame_hdr
Segment without sections
Shared libraries
Imported symbols
Exported symbols
ExifTool file metadata
MIMEType
application/octet-stream

CPUByteOrder
Little endian

CPUArchitecture
64 bit

FileType
ELF shared library

FileTypeExtension
so

ObjectFileType
Shared object file

CPUType
AMD x86-64

Compressed bundles
File identification
MD5 e022de72cce8129bd5ac8a0675996318
SHA1 2ccb789d57d3ce3dd929307eb78878e6e5c61ccf
SHA256 345a86f839372db0ee7367be0b9df2d2d844cef406407695a2f869d6b3380ece
ssdeep
384:aphftVPdjUKk1jJxW1bIYMyxma1vXobORTCGl2TApe2dU/GynpXWTOHZZnm:alVPdjUKkRJ4My4UvqYF2Ti/O5Z

File size 38.3 KB ( 39176 bytes )
File type ELF
Magic literal
ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, stripped

TrID ELF Executable and Linkable format (generic) (100.0%)
Tags
64bits elf shared-lib

VirusTotal metadata
First submission 2012-10-18 08:54:30 UTC ( 4 years, 4 months ago )
Last submission 2017-01-12 08:20:19 UTC ( 1 month, 2 weeks ago )
File names 345A86F839372DB0EE7367BE0B9DF2D2D844CEF406407695A2F869D6B3380ECE
mod_chart_proxy
linux-chapros
e022de72cce8129bd5ac8a0675996318
mod_chart_proxy.so
345a86f839372db0ee7367be0b9df2d2d844cef406407695a2f869d6b3380ece
linux-chapros_ E022DE72CCE8129BD5AC8A0675996318
agent
345A86F839372DB0EE7367BE0B9DF2D2D844CEF406407695A2F869D6B3380ECE
47199340
vti-rescan
345A86F839372DB0EE7367BE0B9DF2D2D844CEF406407695A2F869D6B3380ECE.dat
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!