× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 4b1bddc6aa4a87793cc10da6e171aa67b5ba93cfd7bda9e341cb1ea52003a131
File name: mirai.x86
Detection ratio: 37 / 60
Analysis date: 2018-04-29 11:55:39 UTC ( 11 months, 3 weeks ago ) View latest
Antivirus Result Update
Ad-Aware Trojan.Linux.Backdoor.C 20180429
AegisLab Backdoor.Linux.Mirai!c 20180429
AhnLab-V3 Linux/Mirai.55872.D 20180429
ALYac Trojan.Linux.Backdoor.C 20180429
Antiy-AVL Trojan[Backdoor]/Linux.Gafgyt.x 20180429
Arcabit Trojan.Linux.Backdoor.C 20180429
Avast ELF:Mirai-A [Trj] 20180429
Avast-Mobile ELF:Mirai-AH [Trj] 20180429
AVG ELF:Mirai-A [Trj] 20180429
Avira (no cloud) LINUX/Mirai.bonc 20180429
BitDefender Trojan.Linux.Backdoor.C 20180429
ClamAV Unix.Trojan.Mirai-1 20180429
Comodo .UnclassifiedMalware 20180429
Cyren ELF/Trojan.SZNI-1 20180429
DrWeb Linux.Mirai.754 20180429
Emsisoft Trojan.Linux.Backdoor.C (B) 20180429
ESET-NOD32 a variant of Linux/Mirai.A 20180429
F-Secure Trojan.Linux.Backdoor.C 20180429
Fortinet ELF/Mirai.A!tr 20180429
GData Linux.Trojan.Mirai.B 20180429
Ikarus Linux.Mirai 20180429
Jiangmin Backdoor.Linux.avpl 20180429
Kaspersky HEUR:Backdoor.Linux.Mirai.n 20180429
MAX malware (ai score=98) 20180429
McAfee Linux/Mirai 20180429
McAfee-GW-Edition Linux/Mirai 20180425
Microsoft Backdoor:Linux/Mirai!rfn 20180429
eScan Trojan.Linux.Backdoor.C 20180429
NANO-Antivirus Trojan.Elf32.Mirai.eyyuxl 20180429
Qihoo-360 virus.elf.mirai.b 20180429
Sophos AV Linux/DDoS-CI 20180429
Symantec Linux.Mirai 20180428
Tencent Trojan.Linux.Mirai.c 20180429
TrendMicro ELF_MIRAI.SM1 20180429
TrendMicro-HouseCall ELF_MIRAI.SM1 20180429
Zillya Backdoor.Mirai.Linux.7529 20180427
ZoneAlarm by Check Point HEUR:Backdoor.Linux.Mirai.n 20180429
Alibaba 20180428
AVware 20180428
Babable 20180406
Baidu 20180428
Bkav 20180426
CAT-QuickHeal 20180428
CMC 20180429
CrowdStrike Falcon (ML) 20180418
Cybereason None
Cylance 20180429
eGambit 20180429
Endgame 20180403
F-Prot 20180429
Sophos ML 20180121
K7AntiVirus 20180429
K7GW 20180429
Kingsoft 20180429
Malwarebytes 20180429
nProtect 20180429
Palo Alto Networks (Known Signatures) 20180429
Panda 20180429
Rising 20180429
SentinelOne (Static ML) 20180225
SUPERAntiSpyware 20180429
Symantec Mobile Insight 20180424
TheHacker 20180426
TotalDefense 20180429
Trustlook 20180429
VBA32 20180428
VIPRE 20180428
ViRobot 20180428
Webroot 20180429
Yandex 20180428
Zoner 20180428
The file being studied is an ELF! More specifically, it is a EXEC (Executable file) ELF for Unix systems running on Intel 80386 machines.
ELF Header
Class ELF32
Data 2's complement, little endian
Header version 1 (current)
OS ABI UNIX - System V
ABI version 0
Object file type EXEC (Executable file)
Required architecture Intel 80386
Object file version 0x1
Program headers 3
Section headers 10
ELF sections
ELF Segments
.init
.text
.fini
.rodata
.ctors
.dtors
.data
.bss
Segment without sections
ExifTool file metadata
MIMEType
application/octet-stream

CPUByteOrder
Little endian

CPUArchitecture
32 bit

FileType
ELF executable

ObjectFileType
Executable file

CPUType
i386

File identification
MD5 3e1b559cd7e83b849762ceeca1106243
SHA1 4b968d66bbd95a192179b9ecb6eaa3e32fed5dc1
SHA256 4b1bddc6aa4a87793cc10da6e171aa67b5ba93cfd7bda9e341cb1ea52003a131
ssdeep
1536:36Ew7hWCbZ6OzptrGP85wXyGWTF+Lt+Rc:C1W4Z6OzP4NXyGWp+LQK

File size 54.6 KB ( 55872 bytes )
File type ELF
Magic literal
ELF 32-bit LSB executable, Intel 80386, version 1 (SYSV), statically linked, stripped

TrID ELF Executable and Linkable format (Linux) (50.1%)
ELF Executable and Linkable format (generic) (49.8%)
Tags
elf

VirusTotal metadata
First submission 2018-03-17 09:53:23 UTC ( 1 year, 1 month ago )
Last submission 2019-01-18 16:22:38 UTC ( 3 months ago )
File names mirai.x86
3e1b559cd7e83b849762ceeca1106243
3e1b559cd7e83b849762ceeca1106243
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!