× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 502d3b8b62c172c4c94399fe69e30fe72c31fe3dfc23ea37126097ce2892de69
File name: mal
Detection ratio: 16 / 59
Analysis date: 2018-06-05 08:17:56 UTC ( 10 months, 3 weeks ago ) View latest
Antivirus Result Update
Avast ELF:Mirai-GG [Trj] 20180605
AVG ELF:Mirai-GG [Trj] 20180605
Avira (no cloud) LINUX/Mirai.vxbfr 20180605
Cyren ELF/Trojan.NAAD-52 20180605
DrWeb Linux.Mirai.8 20180605
ESET-NOD32 a variant of Linux/Mirai.A 20180605
Fortinet Linux/Mirai.A!tr 20180605
GData Linux.Trojan.Agent.I7WXFJ 20180605
Kaspersky HEUR:Backdoor.Linux.Mirai.b 20180605
MAX malware (ai score=94) 20180605
Qihoo-360 Win32/Backdoor.6f4 20180605
Sophos AV Mal/Generic-S 20180605
Symantec Linux.Mirai 20180605
Tencent Linux.Backdoor.Mirai.Ljkh 20180605
TrendMicro-HouseCall TROJ_GEN.R002H0DF418 20180605
ZoneAlarm by Check Point HEUR:Backdoor.Linux.Mirai.b 20180605
Ad-Aware 20180605
AegisLab 20180605
AhnLab-V3 20180605
Alibaba 20180604
ALYac 20180605
Antiy-AVL 20180605
Arcabit 20180605
Avast-Mobile 20180604
AVware 20180605
Baidu 20180605
BitDefender 20180605
Bkav 20180604
CAT-QuickHeal 20180604
ClamAV 20180604
CMC 20180605
Comodo 20180604
CrowdStrike Falcon (ML) 20180202
Cybereason None
Cylance 20180605
eGambit 20180605
Emsisoft 20180605
Endgame 20180507
F-Prot 20180605
F-Secure 20180605
Ikarus 20180604
Sophos ML 20180601
Jiangmin 20180605
K7AntiVirus 20180605
K7GW 20180605
Kingsoft 20180605
Malwarebytes 20180605
McAfee 20180605
McAfee-GW-Edition 20180605
Microsoft 20180605
eScan 20180605
NANO-Antivirus 20180605
nProtect 20180605
Palo Alto Networks (Known Signatures) 20180605
Panda 20180604
Rising 20180605
SentinelOne (Static ML) 20180225
SUPERAntiSpyware 20180605
Symantec Mobile Insight 20180605
TheHacker 20180605
TotalDefense 20180605
TrendMicro 20180605
Trustlook 20180605
VBA32 20180604
VIPRE 20180605
ViRobot 20180605
Webroot 20180605
Yandex 20180529
Zillya 20180604
Zoner 20180605
The file being studied is an ELF! More specifically, it is a EXEC (Executable file) ELF for Unix systems running on <unknown> machines.
ELF Header
Class ELF32
Data 2's complement, big endian
Header version 1 (current)
OS ABI UNIX - Linux
ABI version 0
Object file type EXEC (Executable file)
Required architecture <unknown>
Object file version 0x1
Program headers 3
Section headers 0
Packers identified
upx
ELF Segments
Segment without sections
Segment without sections
Segment without sections
ExifTool file metadata
MIMEType
application/octet-stream

CPUByteOrder
Big endian

CPUArchitecture
32 bit

FileType
ELF executable

ObjectFileType
Executable file

CPUType
PowerPC

File identification
MD5 32a797a0d552f6404ae6d8459a5c0f48
SHA1 0eaf0a745d93355b7bc2c41a4bb36b877adc900c
SHA256 502d3b8b62c172c4c94399fe69e30fe72c31fe3dfc23ea37126097ce2892de69
ssdeep
768:2Iq/L05/QGJXB9H3ELGmhEjE+GySI7KWF4uVcqgw0zN:2Q5oGlTH35cKNlF4u+qgw0zN

File size 28.7 KB ( 29372 bytes )
File type ELF
Magic literal
ELF 32-bit MSB executable, PowerPC or cisco 4500, version 1 (GNU/Linux), statically linked, stripped

TrID ELF Executable and Linkable format (Linux) (50.1%)
ELF Executable and Linkable format (generic) (49.8%)
Tags
elf upx

VirusTotal metadata
First submission 2018-06-04 03:52:43 UTC ( 10 months, 3 weeks ago )
Last submission 2018-06-05 19:07:23 UTC ( 10 months, 3 weeks ago )
File names 27
24
23
115
mal
353
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!