× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: a4e8638a04f35cfc837b4c6397ab1295ceba4f51f3d8cdb607d9602997299de2
File name: zbetcheckin_tracker_wget
Detection ratio: 15 / 60
Analysis date: 2019-01-14 07:31:37 UTC ( 2 months, 1 week ago ) View latest
Antivirus Result Update
AhnLab-V3 Linux/Gafgyt.Gen27 20190113
Avast ELF:Agent-UR [Trj] 20190114
Avast-Mobile ELF:DDoS-S [Trj] 20190113
AVG ELF:Agent-UR [Trj] 20190114
DrWeb Linux.BackDoor.Fgt.1440 20190114
ESET-NOD32 a variant of Linux/Gafgyt.ANW 20190113
Fortinet ELF/Gafgyt.BJ!tr 20190114
Ikarus Trojan.Linux.Gafgyt 20190114
Kaspersky HEUR:Backdoor.Linux.Gafgyt.bj 20190114
McAfee Linux/Backdoor-gen.a 20190114
McAfee-GW-Edition Linux/Backdoor-gen.a 20190114
SentinelOne (Static ML) static engine - malicious 20181223
TrendMicro Possible_BASHLITE.SMLBN1 20190114
TrendMicro-HouseCall Possible_BASHLITE.SMLBN1 20190114
ZoneAlarm by Check Point HEUR:Backdoor.Linux.Gafgyt.bj 20190114
Acronis 20190111
Ad-Aware 20190114
AegisLab 20190113
Alibaba 20180921
ALYac 20190114
Antiy-AVL 20190113
Arcabit 20190114
Avira (no cloud) 20190113
AVware 20180925
Babable 20180918
Baidu 20190111
BitDefender 20190114
Bkav 20190108
CAT-QuickHeal 20190113
ClamAV 20190114
CMC 20190113
Comodo 20190114
CrowdStrike Falcon (ML) 20181023
Cybereason 20190109
Cylance 20190114
Cyren 20190114
eGambit 20190114
Emsisoft 20190114
Endgame 20181108
F-Prot 20190114
F-Secure 20190111
GData 20190114
Sophos ML 20181128
Jiangmin 20190114
K7AntiVirus 20190113
K7GW 20190113
Kingsoft 20190114
Malwarebytes 20190114
MAX 20190114
Microsoft 20190114
eScan 20190114
NANO-Antivirus 20190114
Palo Alto Networks (Known Signatures) 20190114
Panda 20190113
Qihoo-360 20190114
Rising 20190114
Sophos AV 20190114
SUPERAntiSpyware 20190109
Symantec 20190113
TACHYON 20190114
Tencent 20190114
TheHacker 20190113
TotalDefense 20190113
Trapmine 20190103
Trustlook 20190114
VBA32 20190111
VIPRE 20190113
ViRobot 20190113
Webroot 20190114
Yandex 20190111
Zillya 20190111
Zoner 20190114
The file being studied is an ELF! More specifically, it is a EXEC (Executable file) ELF for Unix systems running on Intel 80386 machines.
ELF Header
Class ELF32
Data 2's complement, little endian
Header version 1 (current)
OS ABI UNIX - System V
ABI version 0
Object file type EXEC (Executable file)
Required architecture Intel 80386
Object file version 0x1
Program headers 3
Section headers 16
ELF sections
ELF Segments
.init
.text
.fini
.rodata
.eh_frame
.ctors
.dtors
.jcr
.got.plt
.data
.bss
Segment without sections
Imported symbols
Exported symbols
ExifTool file metadata
MIMEType
application/octet-stream

CPUByteOrder
Little endian

CPUArchitecture
32 bit

FileType
ELF executable

ObjectFileType
Executable file

CPUType
i386

File identification
MD5 611427e7a31f6044eb284638dbdfd86a
SHA1 4a4f92c24976dfd94abb03432f66c05d3713eae1
SHA256 a4e8638a04f35cfc837b4c6397ab1295ceba4f51f3d8cdb607d9602997299de2
ssdeep
1536:402ltlMPY/VjoWPTukFxKnDUM234KYG7FJKWiaclH0g3id92DnmP+lVrCjmxfZp1:qltlMPY/VjoWPTDxKnDw34xg7PcJ0goe

File size 72.2 KB ( 73889 bytes )
File type ELF
Magic literal
ELF 32-bit LSB executable, Intel 80386, version 1 (SYSV), statically linked, not stripped

TrID ELF Executable and Linkable format (Linux) (50.1%)
ELF Executable and Linkable format (generic) (49.8%)
Tags
elf

VirusTotal metadata
First submission 2019-01-14 07:31:37 UTC ( 2 months, 1 week ago )
Last submission 2019-01-18 06:42:39 UTC ( 2 months ago )
File names 611427e7a31f6044eb284638dbdfd86a
wget
a4e8638a04f35cfc837b4c6397ab1295ceba4f51f3d8cdb607d9602997299de2
zbetcheckin_tracker_wget
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!