× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 46b79608c9a603c1f0046b0952f080b6cce855320a80bb6db4155a26ab0fd5f0
File name: g3308l
Detection ratio: 38 / 55
Analysis date: 2018-12-04 05:09:36 UTC ( 4 months, 3 weeks ago ) View latest
Antivirus Result Update
Ad-Aware Gen:Variant.Trojan.Linux.XorDDoS.2 20181204
AegisLab Trojan.Linux.Xarcen.4!c 20181204
AhnLab-V3 Linux/Xorddos.625867 20181203
ALYac Gen:Variant.Trojan.Linux.XorDDoS.2 20181204
Antiy-AVL Trojan[DDoS]/Linux.Xarcen.a 20181204
Arcabit Trojan.Trojan.Linux.XorDDoS.2 20181204
Avast-Mobile ELF:Xorddos-I [Trj] 20181203
Avira (no cloud) LINUX/Xorddos.cona 20181204
BitDefender Gen:Variant.Trojan.Linux.XorDDoS.2 20181204
CAT-QuickHeal TrojanXor.Linux.DDos.A 20181203
ClamAV Win.Trojan.Agent-6354603-0 20181203
Comodo Malware@#1kucdsato9sls 20181203
Cyren ELF/Trojan.WZBT-2 20181203
DrWeb Linux.DDoS.Xor.4 20181203
Emsisoft Gen:Variant.Trojan.Linux.XorDDoS.2 (B) 20181203
ESET-NOD32 a variant of Linux/Xorddos.C 20181204
F-Secure Gen:Variant.Trojan.Linux.XorDDoS.2 20181203
Fortinet ELF/DDoS.BH!tr 20181203
GData Gen:Variant.Trojan.Linux.XorDDoS.2 20181203
Ikarus Trojan.Linux.DDoS 20181203
Jiangmin TrojanDDoS.Linux.ff 20181203
Kaspersky HEUR:Trojan-DDoS.Linux.Xarcen.a 20181203
MAX malware (ai score=100) 20181204
McAfee Linux/DDoS-Xor.A 20181203
McAfee-GW-Edition Linux/DDoS-Xor.A 20181204
Microsoft DoS:Linux/Xorddos!rfn 20181204
eScan Gen:Variant.Trojan.Linux.XorDDoS.2 20181204
NANO-Antivirus Trojan.Elf32.Xarcen.eftmox 20181204
Panda ELF/XorDDos.A 20181203
Qihoo-360 Win32/Trojan.DDoS.bbc 20181204
Rising Trojan.DDoS-Xor/Linux!1.A3E4 (CLASSIC) 20181204
Sophos AV Linux/DDoS-BH 20181204
Symantec Linux.Xorddos 20181204
Tencent Trojan.Linux.XorDdos.a 20181204
TrendMicro ELF_XORDDOS.SM 20181204
TrendMicro-HouseCall ELF_XORDDOS.SM 20181204
Zillya Trojan.Xorddos.Linux.34 20181203
ZoneAlarm by Check Point HEUR:Trojan-DDoS.Linux.Xarcen.a 20181204
Alibaba 20180921
Babable 20180918
Baidu 20181203
Bkav 20181203
CMC 20181204
CrowdStrike Falcon (ML) 20181022
Cybereason 20180225
Cylance 20181204
eGambit 20181204
Endgame 20181108
F-Prot 20181203
Sophos ML 20181128
K7AntiVirus 20181203
K7GW 20181203
Kingsoft 20181204
Malwarebytes 20181203
Palo Alto Networks (Known Signatures) 20181204
SentinelOne (Static ML) 20181011
SUPERAntiSpyware 20181128
Symantec Mobile Insight 20181121
TACHYON 20181203
TheHacker 20181202
TotalDefense 20181203
Trapmine 20181128
Trustlook 20181204
VBA32 20181203
ViRobot 20181204
Webroot 20181204
Yandex 20181130
Zoner 20181204
The file being studied is an ELF! More specifically, it is a EXEC (Executable file) ELF for Unix systems running on Intel 80386 machines.
ELF Header
Class ELF32
Data 2's complement, little endian
Header version 1 (current)
OS ABI UNIX - System V
ABI version 0
Object file type EXEC (Executable file)
Required architecture Intel 80386
Object file version 0x1
Program headers 5
Section headers 28
ELF sections
ELF Segments
.note.ABI-tag
.init
.text
__libc_freeres_fn
__libc_thread_freeres_fn
.fini
.rodata
__libc_subfreeres
__libc_atexit
__libc_thread_subfreeres
.eh_frame
.gcc_except_table
.ctors
.dtors
.jcr
.data.rel.ro
.got
.got.plt
.data
.bss
__libc_freeres_ptrs
.note.ABI-tag
Segment without sections
Segment without sections
Imported symbols
Exported symbols
ExifTool file metadata
MIMEType
application/octet-stream

CPUByteOrder
Little endian

CPUArchitecture
32 bit

FileType
ELF executable

ObjectFileType
Executable file

CPUType
i386

Compressed bundles
File identification
MD5 757b89c6cc5a910c11a555a381684e55
SHA1 5cd2b55e20d10dd6bdd9bd972aad67ef7544d4ce
SHA256 46b79608c9a603c1f0046b0952f080b6cce855320a80bb6db4155a26ab0fd5f0
ssdeep
12288:FBXOvdwV1/n/dQFhWlH/c1dHo4h9L+zNZrr3T6yF8EEP4UlUuTh1AG:FBXmkN/+Fhu/Qo4h9L+zNN3BVEBl/91h

File size 611.2 KB ( 625867 bytes )
File type ELF
Magic literal
ELF 32-bit LSB executable, Intel 80386, version 1 (SYSV), statically linked, for GNU/Linux 2.6.9, not stripped

TrID ELF Executable and Linkable format (Linux) (50.1%)
ELF Executable and Linkable format (generic) (49.8%)
Tags
elf

VirusTotal metadata
First submission 2017-09-22 13:34:34 UTC ( 1 year, 7 months ago )
Last submission 2019-04-24 18:51:41 UTC ( 19 hours, 14 minutes ago )
File names output.119593016.txt
182
54
56
50
364
98
tmpWGefYb
tmpUreFBZ
129
226
104
tmpFmG2VJ
95
103
178
130
tmpGzQNGq
g3308l
150
76
e548dced8d824cb775c76b2cc9a22f707052bffe94f22a49e28c4e152e7a483d
75
tmpe5NFOV
tmpevxvnU
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!