× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 76d4edbee9bb092cf09b0b0099c3b74c57309fbd65b5e9ba90f62ddd58a2c0a3
File name: 29
Detection ratio: 12 / 57
Analysis date: 2019-01-17 19:44:51 UTC ( 1 month, 1 week ago ) View latest
Antivirus Result Update
AhnLab-V3 Linux/Mirai.Gen13 20190117
Avast ELF:Mirai-OA [Trj] 20190117
Avast-Mobile ELF:Mirai-UM [Trj] 20190117
AVG ELF:Mirai-OA [Trj] 20190117
DrWeb Linux.Mirai.754 20190117
ESET-NOD32 a variant of Linux/Mirai.L 20190117
Fortinet ELF/Mirai.AE!tr 20190117
Kaspersky HEUR:Backdoor.Linux.Mirai.ad 20190117
Qihoo-360 Win32/Trojan.0a5 20190117
SentinelOne (Static ML) static engine - malicious 20181223
Tencent Linux.Backdoor.Mirai.Hvts 20190117
ZoneAlarm by Check Point HEUR:Backdoor.Linux.Mirai.ad 20190117
Acronis 20190117
Ad-Aware 20190117
AegisLab 20190117
Alibaba 20180921
ALYac 20190117
Antiy-AVL 20190117
Arcabit 20190117
Avira (no cloud) 20190117
Babable 20180918
Baidu 20190117
BitDefender 20190117
Bkav 20190117
CAT-QuickHeal 20190117
ClamAV 20190117
CMC 20190117
Comodo 20190117
CrowdStrike Falcon (ML) 20181023
Cybereason 20190109
Cylance 20190117
Cyren 20190117
eGambit 20190117
Emsisoft 20190117
Endgame 20181108
F-Prot 20190117
F-Secure 20190117
GData 20190117
Sophos ML 20181128
Jiangmin 20190117
K7AntiVirus 20190117
K7GW 20190117
Kingsoft 20190117
Malwarebytes 20190117
MAX 20190117
McAfee 20190117
McAfee-GW-Edition 20190117
Microsoft 20190117
eScan 20190117
NANO-Antivirus 20190117
Palo Alto Networks (Known Signatures) 20190117
Panda 20190117
Rising 20190117
Sophos AV 20190117
SUPERAntiSpyware 20190116
Symantec 20190117
TACHYON 20190117
TheHacker 20190115
TotalDefense 20190117
Trapmine 20190103
TrendMicro 20190117
TrendMicro-HouseCall 20190117
Trustlook 20190117
VBA32 20190117
VIPRE 20190117
ViRobot 20190117
Webroot 20190117
Yandex 20190117
Zillya 20190117
The file being studied is an ELF! More specifically, it is a EXEC (Executable file) ELF for Unix systems running on Intel 80386 machines.
ELF Header
Class ELF32
Data 2's complement, little endian
Header version 1 (current)
OS ABI UNIX - System V
ABI version 0
Object file type EXEC (Executable file)
Required architecture Intel 80386
Object file version 0x1
Program headers 3
Section headers 10
ELF sections
ELF Segments
.init
.text
.fini
.rodata
.ctors
.dtors
.data
.bss
Segment without sections
ExifTool file metadata
MIMEType
application/octet-stream

CPUByteOrder
Little endian

CPUArchitecture
32 bit

FileType
ELF executable

ObjectFileType
Executable file

CPUType
i386

File identification
MD5 2fbc81a4d25af7bdd609addbdc3e59aa
SHA1 0242ef0f5069caee11cc61f30c2f7b50e71a2bfb
SHA256 76d4edbee9bb092cf09b0b0099c3b74c57309fbd65b5e9ba90f62ddd58a2c0a3
ssdeep
1536:b2yjojEzjUxNfHgsRSHCAcJHMRqsBk4Ze:6njEXUxNYsRSHPcJsRt2

File size 80.9 KB ( 82800 bytes )
File type ELF
Magic literal
ELF 32-bit LSB executable, Intel 80386, version 1 (SYSV), statically linked, stripped

TrID ELF Executable and Linkable format (Linux) (50.1%)
ELF Executable and Linkable format (generic) (49.8%)
Tags
elf

VirusTotal metadata
First submission 2019-01-17 18:34:47 UTC ( 1 month, 1 week ago )
Last submission 2019-02-07 22:00:46 UTC ( 2 weeks, 2 days ago )
File names 8
102
156
67
98
54
13
29
29
191
107
153
192
17
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!