× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 5c8c41253aa68adeb955e7d1c7b8e084e06537f75eff12c3f3a0f3cb30cb2152
File name: 856f14251f643bac62b9193c54449472
Detection ratio: 33 / 56
Analysis date: 2019-02-20 00:39:09 UTC ( 2 hours, 15 minutes ago )
Antivirus Result Update
Ad-Aware Linux.Trojan.Agent.A 20190220
AhnLab-V3 Linux/Pnscan.1203885 20190219
ALYac Linux.Trojan.Agent.A 20190220
Arcabit Linux.Trojan.Agent.A 20190220
Avast ELF:PNScan-AG [PUP] 20190220
AVG ELF:PNScan-AG [PUP] 20190220
Avira (no cloud) LINUX/PNScan.7 20190219
BitDefender Linux.Trojan.Agent.A 20190220
CAT-QuickHeal Linux/Svirtu.PR77f 20190219
ClamAV Unix.Malware.Agent-1393485 20190219
Comodo Malware@#2hrwdho68sykg 20190219
DrWeb Linux.PNScan.2 20190220
Emsisoft Linux.Trojan.Agent.A (B) 20190219
ESET-NOD32 Linux/PNScan.A 20190220
F-Secure Malware.LINUX/PNScan.7 20190219
Fortinet ELF/PnScan2.A!tr 20190220
GData Linux.Trojan.Agent.A 20190219
Ikarus Trojan.Linux.Agent 20190219
Jiangmin Backdoor.Linux.anx 20190220
K7AntiVirus Trojan ( 0001140e1 ) 20190219
K7GW Trojan ( 0001140e1 ) 20190219
Kaspersky Backdoor.Linux.Agent.ae 20190220
Microsoft Trojan:Linux/Pienscan.A 20190220
eScan Linux.Trojan.Agent.A 20190220
NANO-Antivirus Trojan.Elf32.Agent.ebdaxn 20190220
Qihoo-360 Win32/Backdoor.cfd 20190220
Sophos AV Mal/Generic-S 20190219
Symantec Linux.Raubdo 20190219
Tencent Linux.Backdoor.Agent.Dztv 20190220
TrendMicro ELF_RAUBIDO.A 20190219
TrendMicro-HouseCall ELF_RAUBIDO.A 20190220
VBA32 Linux.PNScan.2 20190219
ZoneAlarm by Check Point Backdoor.Linux.Agent.ae 20190220
Acronis 20190219
AegisLab 20190220
Alibaba 20180921
Antiy-AVL 20190220
Avast-Mobile 20190219
Babable 20180918
Baidu 20190215
Bkav 20190219
CMC 20190219
CrowdStrike Falcon (ML) 20181023
Cybereason 20190109
Cylance 20190220
Cyren 20190220
eGambit 20190220
Endgame 20190215
F-Prot 20190220
Sophos ML 20181128
Kingsoft 20190220
Malwarebytes 20190219
MAX 20190220
McAfee 20190220
McAfee-GW-Edition 20190219
Palo Alto Networks (Known Signatures) 20190220
Panda 20190219
Rising 20190220
SentinelOne (Static ML) 20190203
SUPERAntiSpyware 20190213
Symantec Mobile Insight 20190207
TACHYON 20190220
TheHacker 20190217
TotalDefense 20190219
Trapmine 20190123
Trustlook 20190220
ViRobot 20190219
Webroot 20190220
Yandex 20190219
Zillya 20190219
Zoner 20190220
The file being studied is an ELF! More specifically, it is a EXEC (Executable file) ELF for Unix systems running on MIPS R3000 machines.
ELF Header
Class ELF32
Data 2's complement, little endian
Header version 1 (current)
OS ABI UNIX - System V
ABI version 0
Object file type EXEC (Executable file)
Required architecture MIPS R3000
Object file version 0x1
Program headers 2
Section headers 0
Packers identified
upx
ELF Segments
Segment without sections
Segment without sections
ExifTool file metadata
MIMEType
application/octet-stream

CPUByteOrder
Little endian

CPUArchitecture
32 bit

FileType
ELF executable

ObjectFileType
Executable file

CPUType
MIPS R3000

File identification
MD5 856f14251f643bac62b9193c54449472
SHA1 be4b4f732e26d32a8d02504a252a1ab4832f2cce
SHA256 5c8c41253aa68adeb955e7d1c7b8e084e06537f75eff12c3f3a0f3cb30cb2152
ssdeep
24576:Htt6KVUUKdedoZworM9X+LwxiY3ggL25NMPc71QeCdvrrZnSlHWlnq:Hv6KVU2d2vsL1fL2rDlevrNnS5WM

File size 1.1 MB ( 1203885 bytes )
File type ELF
Magic literal
ELF 32-bit LSB executable, MIPS, MIPS-I version 1 (SYSV), statically linked, stripped

TrID ELF Executable and Linkable format (generic) (100.0%)
Tags
elf upx via-tor

VirusTotal metadata
First submission 2015-07-24 08:46:08 UTC ( 3 years, 7 months ago )
Last submission 2019-01-22 21:08:19 UTC ( 4 weeks ago )
File names 5c8c41253aa68adeb955e7d1c7b8e084e06537f75eff12c3f3a0f3cb30cb2152
20151004-141516-335fe012-stdin.log
20151004-193755-55ef93c1-stdin.log
20151004-191427-cb4f4160-stdin.log
stdin
856f14251f643bac62b9193c54449472
5c8c41253aa68adeb955e7d1c7b8e084e06537f75eff12c3f3a0f3cb30cb2152
Linux.PNScan.2.MIPSEL
20151006-021207-d5f1e16c-stdin.log
VirusShare_856f14251f643bac62b9193c54449472
5c8c41253aa68adeb955e7d1c7b8e084e06537f75eff12c3f3a0f3cb30cb2152
5c8c41253aa68adeb955e7d1c7b8e084e06537f75eff12c3f3a0f3cb30cb2152
20151004-152607-d924af52-stdin.log
20151004-212153-d98f6eb8-stdin.log
daemon.mipsel.mod
20151005-141956-2567dbea-stdin.log
20150909-110030-2eaa71d3-stdin.log
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!