× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 594e25f2ba9f4abbf74f2fc0d8e8664fe6903bf7c08d4b4a2f1b1220bd2477b6
File name: zbetcheckin_tracker_sh4
Detection ratio: 19 / 59
Analysis date: 2019-01-08 06:45:28 UTC ( 1 month, 1 week ago ) View latest
Antivirus Result Update
Ad-Aware Gen:Variant.Linux.Mirai.1 20190108
AhnLab-V3 Linux/Mirai.Gen6 20190108
ALYac Gen:Variant.Linux.Mirai.1 20190108
Avast ELF:DDoS-Y [Trj] 20190108
Avast-Mobile ELF:DDoS-S [Trj] 20190107
AVG ELF:DDoS-Y [Trj] 20190108
BitDefender Gen:Variant.Linux.Mirai.1 20190108
ClamAV Unix.Trojan.Gafgyt-6748839-0 20190107
DrWeb Linux.BackDoor.Fgt.1603 20190107
Emsisoft Gen:Variant.Linux.Mirai.1 (B) 20190107
ESET-NOD32 a variant of Linux/Mirai.AE 20190108
F-Secure Gen:Variant.Linux.Mirai.1 20190108
Fortinet ELF/Mirai.AE!tr 20190108
GData Linux.Trojan.Gafgyt.A 20190108
Kaspersky HEUR:Backdoor.Linux.Mirai.ad 20190108
MAX malware (ai score=81) 20190108
eScan Gen:Variant.Linux.Mirai.1 20190108
Sophos AV Linux/DDoS-CIA 20190108
ZoneAlarm by Check Point HEUR:Backdoor.Linux.Mirai.ad 20190108
Acronis 20181227
AegisLab 20190108
Alibaba 20180921
Antiy-AVL 20190108
Arcabit 20190108
Avira (no cloud) 20190107
AVware 20180925
Babable 20180918
Baidu 20190108
Bkav 20190107
CAT-QuickHeal 20190107
CMC 20190107
Comodo 20190107
CrowdStrike Falcon (ML) 20181022
Cybereason 20180225
Cylance 20190108
Cyren 20190107
eGambit 20190108
Endgame 20181108
F-Prot 20190108
Sophos ML 20181128
Jiangmin 20190107
K7AntiVirus 20190108
K7GW 20190108
Kingsoft 20190108
Malwarebytes 20190108
McAfee 20190108
McAfee-GW-Edition 20190108
Microsoft 20190108
NANO-Antivirus 20190108
Palo Alto Networks (Known Signatures) 20190108
Panda 20190107
Qihoo-360 20190108
Rising 20190108
SentinelOne (Static ML) 20181223
SUPERAntiSpyware 20190102
Symantec 20190108
TACHYON 20190108
Tencent 20190108
TheHacker 20190106
TotalDefense 20190107
Trapmine 20190103
TrendMicro 20190108
TrendMicro-HouseCall 20190108
Trustlook 20190108
VBA32 20190104
VIPRE 20190106
ViRobot 20190108
Webroot 20190108
Yandex 20181229
Zillya 20190105
Zoner 20190108
The file being studied is an ELF! More specifically, it is a EXEC (Executable file) ELF for Unix systems running on <unknown> machines.
ELF Header
Class ELF32
Data 2's complement, little endian
Header version 1 (current)
OS ABI UNIX - System V
ABI version 0
Object file type EXEC (Executable file)
Required architecture <unknown>
Object file version 0x1
Program headers 3
Section headers 16
ELF sections
ELF Segments
.init
.text
.fini
.rodata
.eh_frame
.ctors
.dtors
.jcr
.data
.got
.bss
Segment without sections
Imported symbols
Exported symbols
ExifTool file metadata
MIMEType
application/octet-stream

CPUByteOrder
Little endian

CPUArchitecture
32 bit

FileType
ELF executable

ObjectFileType
Executable file

CPUType
SuperH

File identification
MD5 2bb770312a7b278e0c5d47e84c11af55
SHA1 752b8805bb9f98be7081af7d7d2cdcaaf0435c63
SHA256 594e25f2ba9f4abbf74f2fc0d8e8664fe6903bf7c08d4b4a2f1b1220bd2477b6
ssdeep
3072:23c+WjCzsHPskIQG8zOiT38RVuGuwJXB0IfQ9GW3xINCKm4ncOS7jaBdrK:23c+WjEsv2iwr0a63xIcKm4ncOS7jaBE

File size 155.4 KB ( 159091 bytes )
File type ELF
Magic literal
ELF 32-bit LSB executable, Renesas SH, version 1 (SYSV), statically linked, not stripped

TrID ELF Executable and Linkable format (generic) (100.0%)
Tags
elf

VirusTotal metadata
First submission 2019-01-08 06:45:28 UTC ( 1 month, 1 week ago )
Last submission 2019-01-09 04:31:10 UTC ( 1 month, 1 week ago )
File names zbetcheckin_tracker_sh4
sh4
594e25f2ba9f4abbf74f2fc0d8e8664fe6903bf7c08d4b4a2f1b1220bd2477b6
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!