× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 4fdd221e929a2ffaadf06487680e1af267526a0654533ec35fa5ffd69a423fa9
File name: 119
Detection ratio: 17 / 57
Analysis date: 2018-12-28 23:01:44 UTC ( 3 months, 3 weeks ago )
Antivirus Result Update
AhnLab-V3 Linux/Gafgyt.Gen25 20181228
Antiy-AVL Trojan[Backdoor]/Linux.Gafgyt.av 20181228
Avast ELF:Gafgyt-DZ [Trj] 20181228
Avast-Mobile ELF:Gafgyt-EA [Trj] 20181228
AVG ELF:Gafgyt-DZ [Trj] 20181228
DrWeb Linux.BackDoor.Fgt.198 20181228
ESET-NOD32 a variant of Linux/Gafgyt.AMV 20181228
Fortinet ELF/Mirai.AE!tr 20181228
GData Linux.Trojan.Gafgyt.B 20181228
Ikarus Trojan.Linux.Gafgyt 20181228
Jiangmin Backdoor.Linux.bgws 20181228
Kaspersky HEUR:Backdoor.Linux.Gafgyt.av 20181228
McAfee Linux/Gafgyt.h 20181228
McAfee-GW-Edition Linux/Gafgyt.h 20181228
Sophos AV Linux/DDoS-BI 20181228
Zillya Backdoor.Gafgyt.Linux.32052 20181228
ZoneAlarm by Check Point HEUR:Backdoor.Linux.Gafgyt.av 20181228
Acronis 20181227
Ad-Aware 20181228
AegisLab 20181228
Alibaba 20180921
ALYac 20181228
Arcabit 20181228
Avira (no cloud) 20181228
Baidu 20181207
BitDefender 20181228
Bkav 20181227
CAT-QuickHeal 20181228
ClamAV 20181228
CMC 20181228
Comodo 20181228
CrowdStrike Falcon (ML) 20181022
Cybereason 20180225
Cylance 20181229
Cyren 20181228
eGambit 20181229
Emsisoft 20181228
Endgame 20181108
F-Prot 20181228
F-Secure 20181228
Sophos ML 20181128
K7AntiVirus 20181228
K7GW 20181228
Kingsoft 20181229
Malwarebytes 20181228
MAX 20181229
Microsoft 20181228
eScan 20181228
NANO-Antivirus 20181228
Palo Alto Networks (Known Signatures) 20181229
Panda 20181228
Qihoo-360 20181229
Rising 20181228
SentinelOne (Static ML) 20181223
SUPERAntiSpyware 20181226
Symantec 20181228
Symantec Mobile Insight 20181225
TACHYON 20181228
Tencent 20181229
TheHacker 20181225
TotalDefense 20181228
Trapmine 20181205
TrendMicro 20181228
TrendMicro-HouseCall 20181228
Trustlook 20181229
VBA32 20181228
VIPRE 20181228
ViRobot 20181228
Webroot 20181229
Yandex 20181227
Zoner 20181228
The file being studied is an ELF! More specifically, it is a EXEC (Executable file) ELF for Unix systems running on MIPS R3000 machines.
ELF Header
Class ELF32
Data 2's complement, big endian
Header version 1 (current)
OS ABI UNIX - System V
ABI version 0
Object file type EXEC (Executable file)
Required architecture MIPS R3000
Object file version 0x1
Program headers 4
Section headers 20
ELF sections
ELF Segments
.reginfo
.reginfo
.init
.text
.fini
.rodata
.eh_frame
.ctors
.dtors
.jcr
.data
.got
.sbss
.bss
Segment without sections
Imported symbols
Exported symbols
ExifTool file metadata
MIMEType
application/octet-stream

CPUByteOrder
Big endian

CPUArchitecture
32 bit

FileType
ELF executable

ObjectFileType
Executable file

CPUType
MIPS R3000

File identification
MD5 65e6bb09e44398b5a93bb07149eddeff
SHA1 80b42623f0528ba87a7ddf365a2a1f387c73d3e3
SHA256 4fdd221e929a2ffaadf06487680e1af267526a0654533ec35fa5ffd69a423fa9
ssdeep
3072:nfdLXuFkwsD/x9ikkRX1WKf2ssp3aaF2cinHWYlPrKnJ1l5hW8xxxx8ybstzYiFy:VszK/l5hW8xxxx8yb/iF3xemqY1fuBme

File size 134.7 KB ( 137917 bytes )
File type ELF
Magic literal
ELF 32-bit MSB executable, MIPS, MIPS-I version 1 (SYSV), statically linked, not stripped

TrID ELF Executable and Linkable format (generic) (100.0%)
Tags
elf

VirusTotal metadata
First submission 2018-12-28 23:01:44 UTC ( 3 months, 3 weeks ago )
Last submission 2018-12-28 23:01:44 UTC ( 3 months, 3 weeks ago )
File names 119
yakuza.mips
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!