× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 44153031700a019e8f9e434107e4706a705f032898d3a9819c4909b2af634f18
File name: mini
Detection ratio: 1 / 56
Analysis date: 2014-12-18 08:33:54 UTC ( 4 years, 2 months ago ) View latest
Antivirus Result Update
Avast ELF:Xorddos-J [Trj] 20141218
Ad-Aware 20141218
AegisLab 20141218
Yandex 20141217
AhnLab-V3 20141218
ALYac 20150101
Antiy-AVL 20141218
AVG 20150101
Avira (no cloud) 20141218
AVware 20150101
Baidu-International 20141217
BitDefender 20141218
Bkav 20141217
ByteHero 20141218
CAT-QuickHeal 20141218
ClamAV 20141218
CMC 20141215
Comodo 20141218
Cyren 20141218
DrWeb 20150101
Emsisoft 20141218
ESET-NOD32 20141218
F-Prot 20141218
F-Secure 20150101
Fortinet 20141218
GData 20141218
Ikarus 20141218
Jiangmin 20141217
K7AntiVirus 20141217
K7GW 20141218
Kaspersky 20141218
Kingsoft 20141218
Malwarebytes 20141218
McAfee 20141218
McAfee-GW-Edition 20150101
Microsoft 20141218
eScan 20141218
NANO-Antivirus 20141218
Norman 20141218
nProtect 20141217
Panda 20141217
Qihoo-360 20150101
Rising 20141217
Sophos AV 20141218
SUPERAntiSpyware 20141218
Symantec 20141218
Tencent 20141218
TheHacker 20141217
TotalDefense 20141218
TrendMicro 20150101
TrendMicro-HouseCall 20150101
VBA32 20141217
VIPRE 20150101
ViRobot 20141218
Zillya 20141216
Zoner 20141216
The file being studied is an ELF! More specifically, it is a EXEC (Executable file) ELF for Unix systems running on Intel 80386 machines.
ELF Header
Class ELF32
Data 2's complement, little endian
Header version 1 (current)
OS ABI UNIX - System V
ABI version 0
Object file type EXEC (Executable file)
Required architecture Intel 80386
Object file version 0x1
Program headers 4
Section headers 25
ELF sections
ELF Segments
.init
.text
__libc_freeres_fn
__libc_thread_freeres_fn
.fini
.rodata
__libc_atexit
__libc_subfreeres
__libc_thread_subfreeres
.eh_frame
.note.ABI-tag
.ctors
.dtors
.jcr
.data.rel.ro
.got
.got.plt
.data
.bss
__libc_freeres_ptrs
.note.ABI-tag
Segment without sections
Imported symbols
Exported symbols
ExifTool file metadata
MIMEType
application/octet-stream

CPUByteOrder
Little endian

CPUArchitecture
32 bit

FileType
ELF executable

ObjectFileType
Executable file

CPUType
i386

Compressed bundles
PCAP parents
File identification
MD5 ea708b86c2a50a94457c7cb3ebc97f9d
SHA1 f8358e17372ba6efecf86e584152a6f2c8ac0e0d
SHA256 44153031700a019e8f9e434107e4706a705f032898d3a9819c4909b2af634f18
ssdeep
12288:1seAIccepBEOWiXYSmrZTk9jdp3RaMn7Zpiy9Js+:WeAIdejWiXYFw9Rp77ZMy9j

File size 491.8 KB ( 503643 bytes )
File type ELF
Magic literal
ELF 32-bit LSB executable, Intel 80386, version 1 (SYSV), statically linked, for GNU/Linux 2.2.5, not stripped

TrID ELF Executable and Linkable format (Linux) (50.1%)
ELF Executable and Linkable format (generic) (49.8%)
Tags
elf

VirusTotal metadata
First submission 2014-09-18 19:07:29 UTC ( 4 years, 5 months ago )
Last submission 2018-05-15 00:08:15 UTC ( 9 months ago )
File names mini
44153031700a019e8f9e434107e4706a705f032898d3a9819c4909b2af634f18
ea708b86c2a50a94457c7cb3ebc97f9d
VirusShare_ea708b86c2a50a94457c7cb3ebc97f9d
vti-rescan
SHyUcaTHu7.mht
f8358e17372ba6efecf86e584152a6f2c8ac0e0d_mini
DQHJHNC0ZS.dotx
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!