× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 4422633b12627c70246d868d86cabd6702908b79f3826bcf9222ab20501cb394
File name: 102
Detection ratio: 35 / 57
Analysis date: 2018-12-16 23:04:43 UTC ( 2 months ago )
Antivirus Result Update
Ad-Aware Application.Linux.Portscan.A 20181216
AegisLab Hacktool.Linux.Small.3!c 20181214
ALYac Misc.HackTool.Linux.PortScan 20181216
Antiy-AVL HackTool/Linux.Small.af 20181216
Arcabit Application.Linux.Portscan.A 20181216
Avast ELF:Portscan-B [Tool] 20181216
AVG ELF:Portscan-B [Tool] 20181216
BitDefender Application.Linux.Portscan.A 20181216
CAT-QuickHeal HackTool.Linux.Small.af144 20181216
ClamAV Unix.Malware.Agent-6623432-0 20181216
Comodo Malware@#3l9bzqxahusj3 20181216
Cyren ELF/Trojan.ASWP-8 20181216
DrWeb Tool.PortScan.14 20181216
Emsisoft Application.Linux.Portscan.A (B) 20181216
ESET-NOD32 Linux/HackTool.Portscan.A potentially unsafe 20181216
F-Secure Application.Linux.Portscan 20181216
Fortinet Linux/Portscan 20181216
GData Application.Linux.Portscan.A 20181216
Jiangmin HackTool.Linux.p 20181216
K7AntiVirus Trojan ( 0001140e1 ) 20181216
K7GW Trojan ( 0001140e1 ) 20181216
Kaspersky HackTool.Linux.Small.af 20181216
McAfee Linux/Portscan 20181216
McAfee-GW-Edition Linux/Portscan 20181216
eScan Application.Linux.Portscan.A 20181216
NANO-Antivirus Trojan.Elf32.Small.cmqnk 20181216
Qihoo-360 Win32/Application.a7f 20181216
Sophos AV Troj/PScan-A 20181216
Symantec Hacktool 20181216
Tencent hacktool.linux.small.af 20181216
TrendMicro HKTL_PORTSCAN 20181216
TrendMicro-HouseCall HKTL_PORTSCAN 20181216
Yandex Hacktool.Linux.PScan.A 20181214
Zillya Downloader.OpenConnection.JS.5511 20181215
ZoneAlarm by Check Point HackTool.Linux.Small.af 20181216
AhnLab-V3 20181216
Alibaba 20180921
Avast-Mobile 20181216
Avira (no cloud) 20181216
Babable 20180918
Baidu 20181207
Bkav 20181214
CMC 20181216
CrowdStrike Falcon (ML) 20180202
Cybereason 20180308
Cylance 20181216
eGambit 20181216
Endgame 20181108
F-Prot 20181216
Ikarus 20181216
Sophos ML 20181128
Kingsoft 20181216
Malwarebytes 20181216
MAX 20181216
Microsoft 20181216
Palo Alto Networks (Known Signatures) 20181216
Panda 20181216
Rising 20181216
SentinelOne (Static ML) 20181011
SUPERAntiSpyware 20181212
Symantec Mobile Insight 20181215
TACHYON 20181214
TheHacker 20181216
TotalDefense 20181216
Trapmine 20181205
Trustlook 20181216
VBA32 20181214
ViRobot 20181216
Webroot 20181216
Zoner 20181216
The file being studied is an ELF! More specifically, it is a EXEC (Executable file) ELF for Unix systems running on Intel 80386 machines.
ELF Header
Class ELF32
Data 2's complement, little endian
Header version 1 (current)
OS ABI UNIX - System V
ABI version 0
Object file type EXEC (Executable file)
Required architecture Intel 80386
Object file version 0x1
Program headers 6
Section headers 25
ELF sections
ELF Segments
Segment without sections
.interp
.interp
.note.ABI-tag
.hash
.dynsym
.dynstr
.gnu.version
.gnu.version_r
.rel.dyn
.rel.plt
.init
.plt
.text
.fini
.rodata
.eh_frame
.data
.dynamic
.ctors
.dtors
.jcr
.got
.bss
.dynamic
.note.ABI-tag
Shared libraries
Imported symbols
Exported symbols
ExifTool file metadata
MIMEType
application/octet-stream

CPUByteOrder
Little endian

CPUArchitecture
32 bit

FileType
ELF executable

ObjectFileType
Executable file

CPUType
i386

Compressed bundles
File identification
MD5 b3eb1ec8094fa10169dba7a8bd1a97f1
SHA1 ccb291eb13a32ae78edf50e84097fd4c0cf18a1d
SHA256 4422633b12627c70246d868d86cabd6702908b79f3826bcf9222ab20501cb394
ssdeep
96:fHPWXVs/UEkgsqnnx0t9Oek9LjqFxss/uh9jw+eNm6ci6jizk:fY8kgsqnKtQqbL7+ef

File size 5.8 KB ( 5944 bytes )
File type ELF
Magic literal
ELF 32-bit LSB executable, Intel 80386, version 1 (SYSV), dynamically linked (uses shared libs), for GNU/Linux 2.2.5, stripped

TrID ELF Executable and Linkable format (Linux) (50.1%)
ELF Executable and Linkable format (generic) (49.8%)
Tags
elf

VirusTotal metadata
First submission 2006-06-03 08:18:11 UTC ( 12 years, 8 months ago )
Last submission 2018-12-16 23:04:43 UTC ( 2 months ago )
File names VirusShare_b3eb1ec8094fa10169dba7a8bd1a97f1
0GS2exq.xlt
67
98
vti-rescan
VirusShare_b3eb1ec8094fa10169dba7a8bd1a97f1
196
102
aa
b3eb1ec8094fa10169dba7a8bd1a97f1.apk
b3eb1ec8094fa10169dba7a8bd1a97f1
1111
167
Xu3I.dwg
37
73
pscan2
mjlEG.xlsm
140
VirusShare_b3eb1ec8094fa10169dba7a8bd1a97f1
147
378
pscan2
92
b3eb1ec8094fa10169dba7a8bd1a97f1
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!