× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: a04ac6d98ad989312783d4fe3456c53730b212c79a426fb215708b6c6daa3de3
File name: 187
Detection ratio: 32 / 56
Analysis date: 2019-04-15 14:48:21 UTC ( 1 month, 1 week ago ) View latest
Antivirus Result Update
Ad-Aware Trojan.Linux.Agent.ABH 20190415
AegisLab Trojan.Linux.Hajime.4!c 20190415
ALYac Trojan.Linux.Agent.ABH 20190415
Arcabit Trojan.Linux.Agent.ABH 20190415
Avast ELF:Hajime-I [Trj] 20190415
Avast-Mobile ELF:Hajime-I [Trj] 20190415
AVG ELF:Hajime-I [Trj] 20190415
Avira (no cloud) LINUX/Hajime.nsnlw 20190415
BitDefender Trojan.Linux.Agent.ABH 20190415
ClamAV Unix.Malware.Agent-6626471-0 20190415
Comodo Malware@#3bveikrpknimk 20190415
Cyren ELF/Trojan.ZYLP-5 20190415
DrWeb Linux.Hajime.28 20190415
Emsisoft Trojan.Linux.Agent.ABH (B) 20190415
ESET-NOD32 a variant of Linux/Hajime.A 20190415
F-Secure Malware.LINUX/Hajime.nsnlw 20190415
FireEye Trojan.Linux.Agent.ABH 20190415
Fortinet Linux/Hajime.A!tr.bdr 20190415
GData Trojan.Linux.Agent.ABH 20190415
Ikarus Trojan.Linux.Hajime 20190415
Jiangmin Backdoor.Linux.ayjk 20190415
Kaspersky HEUR:Backdoor.Linux.Hajime.b 20190415
McAfee Linux/GenericAA-IC 20190415
McAfee-GW-Edition RDN/Generic BackDoor 20190415
eScan Trojan.Linux.Agent.ABH 20190415
NANO-Antivirus Trojan.ElfArm32.Hajime.fbhtfi 20190415
Qihoo-360 Win32/Backdoor.IM.280 20190415
Sophos AV Mal/Generic-S 20190415
Tencent Linux.Backdoor.Hajime.Huzk 20190415
TrendMicro-HouseCall ELF_HAJIME.DT 20190415
Zillya Backdoor.Hajime.Linux.129 20190415
ZoneAlarm by Check Point HEUR:Backdoor.Linux.Hajime.b 20190415
Acronis 20190415
AhnLab-V3 20190415
Alibaba 20190402
Antiy-AVL 20190415
Babable 20180918
Baidu 20190318
Bkav 20190412
CAT-QuickHeal 20190414
CMC 20190321
CrowdStrike Falcon (ML) 20190212
Cybereason 20190403
eGambit 20190415
Endgame 20190403
Sophos ML 20190313
K7AntiVirus 20190415
K7GW 20190415
Kingsoft 20190415
Malwarebytes 20190415
MAX 20190415
Microsoft 20190415
Palo Alto Networks (Known Signatures) 20190415
Panda 20190415
Rising 20190415
SentinelOne (Static ML) 20190407
SUPERAntiSpyware 20190410
Symantec Mobile Insight 20190410
TACHYON 20190415
TheHacker 20190411
TotalDefense 20190413
Trapmine 20190325
Trustlook 20190415
VBA32 20190415
ViRobot 20190415
Yandex 20190412
Zoner 20190415
The file being studied is an ELF! More specifically, it is a EXEC (Executable file) ELF for Unix systems running on ARM machines.
ELF Header
Class ELF32
Data 2's complement, little endian
Header version 1 (current)
OS ABI UNIX - Linux
ABI version 0
Object file type EXEC (Executable file)
Required architecture ARM
Object file version 0x1
Program headers 2
Section headers 0
ELF Segments
Segment without sections
Segment without sections
ExifTool file metadata
MIMEType
application/octet-stream

CPUByteOrder
Little endian

CPUArchitecture
32 bit

FileType
ELF executable

ObjectFileType
Executable file

CPUType
Unknown (40)

PCAP parents
File identification
MD5 9b6c3518a91d23ed77504b5416bfb5b3
SHA1 0a2d170abbf5031566377b01431e3b82d342630a
SHA256 a04ac6d98ad989312783d4fe3456c53730b212c79a426fb215708b6c6daa3de3
ssdeep
1536:87vbq1lGAXSEYQjbChaAU2yU23M51DjZgSQAvcYkFtZTjzBht5:8D+CAXFYQChaAUk5ljnQssL

File size 78.4 KB ( 80280 bytes )
File type ELF
Magic literal
ELF 32-bit LSB executable, ARM, version 1 (GNU/Linux), statically linked, stripped

TrID ELF Executable and Linkable format (generic) (100.0%)
Tags
elf

VirusTotal metadata
First submission 2018-04-12 05:32:34 UTC ( 1 year, 1 month ago )
Last submission 2019-05-24 15:52:02 UTC ( 1 day, 11 hours ago )
File names output.128388199.txt
output.125796124.txt
329
328
205
209
294
output.126568419.txt
output.126206312.txt
37
116
output.126098488.txt
45
43
output.127425157.txt
output.127144079.txt
output.125728872.txt
357
output.126808640.txt
114
115
output.126256781.txt
183
output.126270307.txt
54
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!