× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 93df64cc0ff902ad1e80ada56023610ec2c44c3ecde2d36d37a3a748c7fd42bd
File name: ssh-scan
Detection ratio: 37 / 52
Analysis date: 2014-05-23 00:16:32 UTC ( 4 years, 11 months ago ) View latest
Antivirus Result Update
Ad-Aware Virtool.Linux.Sshscan.B 20140522
Yandex Hacktool.Linux.Sshcan.A 20140522
AhnLab-V3 Linux/Pscanner 20140522
AntiVir SPR/Tool.Sshscan.a 20140523
Avast ELF:Malware-gen 20140523
AVG Linux/Sshscan.A 20140522
BitDefender Virtool.Linux.Sshscan.B 20140522
Bkav MW.Clod627.Trojan.9eb3 20140521
CAT-QuickHeal Linux.HackTool.Sshscan.a 20140522
CMC Generic.Win32.a213ebd69f!MD 20140521
Commtouch Unix/SSHScan.A 20140522
Comodo Application.Linux.HackTool.Sshscan.A 20140522
DrWeb Tool.Sshscan 20140523
Emsisoft Virtool.Linux.Sshscan.B (B) 20140523
F-Prot Unix/SSHScan.A 20140522
F-Secure Virtool.Linux.Sshscan.B 20140522
Fortinet Riskware/Sshscan 20140522
GData Virtool.Linux.Sshscan.B 20140522
Ikarus HackTool.Linux.Sshscan 20140522
Jiangmin HackTool.Linux.aq 20140522
Kaspersky HackTool.Linux.Sshscan.b 20140522
McAfee Linux/Sshscan 20140522
McAfee-GW-Edition Linux/Sshscan 20140523
Microsoft HackTool:Linux/Sshscan.A 20140522
eScan Virtool.Linux.Sshscan.B 20140522
NANO-Antivirus Trojan.Unix.Sshscan.bwsgg 20140522
Norman Sshscan.A 20140522
nProtect Virtool.Linux.Sshscan.B 20140522
Panda HackTool/SSHScan 20140522
Qihoo-360 virus.elf.rootkit.f 20140523
Rising ELF:Hack.Linux.Sshscan.a!139434 20140522
Sophos AV Troj/SSHScan-A 20140522
Symantec Hacktool 20140522
Tencent Linux.Hacktool.Sshscan.Lipv 20140523
TotalDefense Linux/Sshscan.A 20140522
TrendMicro ELF_SSHSCAN.A 20140522
TrendMicro-HouseCall ELF_SSHSCAN.A 20140522
AegisLab 20140523
Antiy-AVL 20140522
Baidu-International 20140522
ByteHero 20140523
ClamAV 20140522
ESET-NOD32 20140522
K7AntiVirus 20140522
K7GW 20140522
Kingsoft 20140523
Malwarebytes 20140523
SUPERAntiSpyware 20140522
TheHacker 20140522
VBA32 20140522
VIPRE 20140522
ViRobot 20140522
The file being studied is an ELF! More specifically, it is a EXEC (Executable file) ELF for Unix systems running on Intel 80386 machines.
ELF Header
Class ELF32
Data 2's complement, little endian
Header version 1 (current)
OS ABI UNIX - System V
ABI version 0
Object file type EXEC (Executable file)
Required architecture Intel 80386
Object file version 0x1
Program headers 3
Section headers 22
ELF sections
ELF Segments
.init
.text
__libc_freeres_fn
__libc_thread_freeres_fn
.fini
.rodata
__libc_atexit
__libc_subfreeres
__libc_thread_subfreeres
.note.ABI-tag
.data
.eh_frame
.ctors
.dtors
.jcr
.got
.bss
__libc_freeres_ptrs
.note.ABI-tag
ExifTool file metadata
MIMEType
application/octet-stream

CPUByteOrder
Little endian

CPUArchitecture
32 bit

FileType
ELF executable

ObjectFileType
Executable file

CPUType
i386

Compressed bundles
File identification
MD5 a213ebd69fbc11d612d0374b373f65d8
SHA1 4f64a5b07b0c128771ea21bf4aa15610fc6b071c
SHA256 93df64cc0ff902ad1e80ada56023610ec2c44c3ecde2d36d37a3a748c7fd42bd
ssdeep
24576:U8dJG9L4f0TYRsbalWjFm4z33bavoZ4UZZ2HQ:dzG9LvDbalG04rb6oZ4EQHQ

File size 823.0 KB ( 842736 bytes )
File type ELF
Magic literal
ELF 32-bit LSB executable, Intel 80386, version 1 (SYSV), statically linked, for GNU/Linux 2.0.0, stripped

TrID ELF Executable and Linkable format (Linux) (50.1%)
ELF Executable and Linkable format (generic) (49.8%)
Tags
elf via-tor

VirusTotal metadata
First submission 2008-02-27 21:32:40 UTC ( 11 years, 1 month ago )
Last submission 2019-02-19 15:37:11 UTC ( 2 months ago )
File names sshf
aa
stap
ssh-scan1
a213ebd69fbc11d612d0374b373f65d8
a213ebd69fbc11d612d0374b373f65d8.apk
ssh-scan.filepart
a213ebd69fbc11d612d0374b373f65d8
ssh-scan.exe
try
i
.sshb2
88
hpiod
ssh-scan
ssh-scan
VirusShare_a213ebd69fbc11d612d0374b373f65d8
ssh.rar
ssh-scan
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!