× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 7b3cd8c1bd0249df458084f28d91648ad14e1baf455fdd53b174481d540070c6
File name: 7b3cd8c1bd0249df458084f28d91648ad14e1baf455fdd53b174481d540070c6.bin
Detection ratio: 42 / 57
Analysis date: 2015-09-04 15:52:33 UTC ( 1 year ago )
Antivirus Result Update
ALYac Trojan.Rootkit.Linux.CDorked.A 20150904
AVG BackDoor.Generic_c.FFG 20150904
AVware Trojan.Linux.Cdorked.a (v) 20150901
Ad-Aware Linux.Cdorked.A 20150904
AhnLab-V3 Linux/Cdorked 20150904
Antiy-AVL Trojan/Generic.ASELF.D1 20150904
Arcabit Linux.Cdorked.A 20150904
Avast ELF:Cdorked-F [Trj] 20150904
Avira (no cloud) LINUX/Cdorked.A 20150904
BitDefender Linux.Cdorked.A 20150904
CAT-QuickHeal Backdoor.Linux.Cdorked.a 20150904
ClamAV Unix.Backdoor.Cdorked 20150904
Comodo UnclassifiedMalware 20150904
Cyren ELF/Cdorked.A 20150904
DrWeb Linux.Cdorked.1 20150904
ESET-NOD32 Linux/Cdorked.A 20150904
Emsisoft Linux.Cdorked.A (B) 20150904
F-Prot ELF/Cdorked.A 20150904
F-Secure Backdoor:Linux/Cdorked.A 20150904
Fortinet ELF/Cdorked.A!tr.bdr 20150904
GData Linux.Cdorked.A 20150904
Ikarus Trojan.ELF.Cdorked 20150904
Jiangmin Backdoor.Linux.Cdorked.a 20150904
K7AntiVirus Trojan ( 0001140e1 ) 20150904
K7GW Trojan ( 0001140e1 ) 20150904
Kaspersky Backdoor.Linux.Cdorked.a 20150904
McAfee Linux/BackDoor-Cdorked 20150904
McAfee-GW-Edition Linux/BackDoor-Cdorked 20150904
eScan Linux.Cdorked.A 20150904
Microsoft Backdoor:Linux/Cdorked.A 20150904
NANO-Antivirus Trojan.Cdorked.dsqhue 20150904
Panda Linux/Cdorked.A 20150904
Qihoo-360 Trojan.Generic 20150904
Sophos Linux/Cdorked-A 20150904
Symantec Linux.Cdorked 20150903
Tencent Linux.Backdoor.Cdorked.Dyqn 20150904
TrendMicro ELF_CDORKED.A 20150904
TrendMicro-HouseCall ELF_CDORKED.A 20150904
VBA32 Backdoor.Linux.Cdorked.a 20150904
VIPRE Trojan.Linux.Cdorked.a (v) 20150904
Zillya Trojan.Cdorked.Linux.7 20150903
nProtect Linux.Cdorked.A 20150904
AegisLab 20150904
Yandex 20150901
Alibaba 20150902
Baidu-International 20150904
Bkav 20150904
ByteHero 20150904
CMC 20150902
Kingsoft 20150904
Malwarebytes 20150904
Rising 20150904
SUPERAntiSpyware 20150904
TheHacker 20150903
TotalDefense 20150904
ViRobot 20150904
Zoner 20150904
The file being studied is an ELF! More specifically, it is a EXEC (Executable file) ELF for Unix systems running on Advanced Micro Devices X86-64 machines.
ELF Header
Class ELF64
Data 2's complement, little endian
Header version 1 (current)
OS ABI UNIX - System V
ABI version 0
Object file type EXEC (Executable file)
Required architecture Advanced Micro Devices X86-64
Object file version 0x1
Program headers 8
Section headers 31
ELF sections
ELF Segments
Segment without sections
Segment without sections
Shared libraries
Imported symbols
Exported symbols
ExifTool file metadata

Little endian

64 bit

ELF executable

Executable file

AMD x86-64

File identification
MD5 1785109e71a8f6eb6fb1ba7cce7c51e6
SHA1 24e3ebc0c5a28ba433dfa69c169a8dd90e05c429
SHA256 7b3cd8c1bd0249df458084f28d91648ad14e1baf455fdd53b174481d540070c6

File size 1.7 MB ( 1731266 bytes )
File type ELF
Magic literal
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), dynamically linked (uses shared libs), for GNU/Linux 2.6.18, not stripped

TrID ELF Executable and Linkable format (Linux) (49.7%)
ELF Executable and Linkable format (generic) (49.4%)
Lumena CEL bitmap (0.7%)
64bits elf

VirusTotal metadata
First submission 2013-04-16 18:54:21 UTC ( 3 years, 5 months ago )
Last submission 2015-09-04 15:52:33 UTC ( 1 year ago )
File names 7b3cd8c1bd0249df458084f28d91648ad14e1baf455fdd53b174481d540070c6.bin
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!