× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: c33e2ad0c98f333f901dbaa489dc1b41237b4824ab1d1e5fe403ef7d3f058d7c
File name: f93d664aac485af82ec863c251626441
Detection ratio: 14 / 55
Analysis date: 2015-12-01 08:01:24 UTC ( 1 year, 10 months ago ) View latest
Antivirus Result Update
Ad-Aware Linux.DDOS.Flood.C 20151130
ALYac Linux.DDOS.Flood.C 20151201
Arcabit Linux.DDOS.Flood.C 20151201
Avast ELF:Flooder-DD [Trj] 20151201
AVG Linux/Flooder2.AW 20151130
BitDefender Linux.DDOS.Flood.C 20151201
DrWeb Linux.DDoS.20 20151201
Emsisoft Linux.DDOS.Flood.C (B) 20151201
ESET-NOD32 Linux/Flooder.Agent.BQ 20151201
F-Secure Linux.DDOS.Flood.C 20151201
GData Linux.DDOS.Flood.C 20151201
eScan Linux.DDOS.Flood.C 20151201
nProtect Linux.DDOS.Flood.C 20151201
Sophos AV Linux/DDoS-BE 20151201
AegisLab 20151130
Yandex 20151130
AhnLab-V3 20151130
Alibaba 20151201
Avira (no cloud) 20151130
AVware 20151201
Baidu-International 20151130
Bkav 20151130
ByteHero 20151201
CAT-QuickHeal 20151201
ClamAV 20151130
CMC 20151130
Comodo 20151201
Cyren 20151201
F-Prot 20151201
Fortinet 20151201
Ikarus 20151201
Jiangmin 20151130
K7AntiVirus 20151201
K7GW 20151201
Kaspersky 20151201
Malwarebytes 20151201
McAfee 20151201
McAfee-GW-Edition 20151201
Microsoft 20151201
NANO-Antivirus 20151201
Panda 20151130
Qihoo-360 20151201
Rising 20151129
SUPERAntiSpyware 20151201
Symantec 20151130
Tencent 20151201
TheHacker 20151127
TotalDefense 20151201
TrendMicro 20151201
TrendMicro-HouseCall 20151201
VBA32 20151130
VIPRE 20151201
ViRobot 20151201
Zillya 20151201
Zoner 20151201
The file being studied is an ELF! More specifically, it is a EXEC (Executable file) ELF for Unix systems running on Intel 80386 machines.
ELF Header
Class ELF32
Data 2's complement, little endian
Header version 1 (current)
OS ABI UNIX - System V
ABI version 0
Object file type EXEC (Executable file)
Required architecture Intel 80386
Object file version 0x1
Program headers 8
Section headers 30
ELF sections
ELF Segments
Segment without sections
.interp
.interp
.note.ABI-tag
.gnu.hash
.dynsym
.dynstr
.gnu.version
.gnu.version_r
.rel.dyn
.rel.plt
.init
.plt
.text
.fini
.rodata
.eh_frame_hdr
.eh_frame
.gcc_except_table
.ctors
.dtors
.jcr
.dynamic
.got
.got.plt
.data
.bss
.dynamic
.note.ABI-tag
.eh_frame_hdr
Segment without sections
Shared libraries
Imported symbols
Exported symbols
ExifTool file metadata
MIMEType
application/octet-stream

CPUByteOrder
Little endian

CPUArchitecture
32 bit

FileType
ELF executable

ObjectFileType
Executable file

CPUType
i386

File identification
MD5 f93d664aac485af82ec863c251626441
SHA1 f99e765f42bd2a2a33f37bd6a22ea7bbda9b97a6
SHA256 c33e2ad0c98f333f901dbaa489dc1b41237b4824ab1d1e5fe403ef7d3f058d7c
ssdeep
1536:NhmnRvrie8Dbrx1/1FGfS5dBBzqAMTDT3IfUGSas1g:NhkRyZ11wa1BkDT3IfBSas1g

File size 70.3 KB ( 71990 bytes )
File type ELF
Magic literal
ELF 32-bit LSB executable, Intel 80386, version 1 (SYSV), dynamically linked (uses shared libs), for GNU/Linux 2.6.9, not stripped

TrID ELF Executable and Linkable format (Linux) (50.1%)
ELF Executable and Linkable format (generic) (49.8%)
Tags
elf

VirusTotal metadata
First submission 2015-12-01 08:01:24 UTC ( 1 year, 10 months ago )
Last submission 2016-02-16 15:00:42 UTC ( 1 year, 8 months ago )
File names f99e765f42bd2a2a33f37bd6a22ea7bbda9b97a6_task
task.ELF.kdefend.mmd
task
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!