× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: d54dd784c66616d93b680b94eec901fe142f4638b33bcf59d42d5aafbc6cb813
File name: zbetcheckin_tracker_vvglma
Detection ratio: 28 / 59
Analysis date: 2019-02-11 14:09:41 UTC ( 2 months, 1 week ago ) View latest
Antivirus Result Update
Ad-Aware Gen:Variant.Backdoor.Linux.Gafgyt.1 20190211
AhnLab-V3 Linux/Gafgyt.Gen1 20190211
ALYac Gen:Variant.Backdoor.Linux.Gafgyt.1 20190211
Antiy-AVL Trojan[Backdoor]/Linux.Gafgyt.af 20190211
Arcabit Trojan.Backdoor.Linux.Gafgyt.1 20190211
Avast ELF:DDoS-Y [Trj] 20190211
Avast-Mobile ELF:DDoS-S [Trj] 20190211
AVG ELF:DDoS-Y [Trj] 20190211
BitDefender Gen:Variant.Backdoor.Linux.Gafgyt.1 20190211
ClamAV Unix.Trojan.Mirai-5607483-0 20190211
DrWeb Linux.BackDoor.Fgt.874 20190211
Emsisoft Gen:Variant.Backdoor.Linux.Gafgyt.1 (B) 20190211
ESET-NOD32 a variant of Linux/Gafgyt.MT 20190211
Fortinet ELF/Gafgyt.WN!tr 20190211
GData Linux.Trojan.Gafgyt.B 20190211
Jiangmin Backdoor.Linux.asec 20190211
Kaspersky HEUR:Backdoor.Linux.Gafgyt.af 20190211
MAX malware (ai score=81) 20190211
McAfee Linux/Gafgyt.a 20190211
McAfee-GW-Edition Linux/Gafgyt.a 20190211
Microsoft DDoS:Linux/Lightaidra 20190211
eScan Gen:Variant.Backdoor.Linux.Gafgyt.1 20190211
SentinelOne (Static ML) static engine - malicious 20190203
Symantec Linux.Lightaidra 20190211
Tencent Backdoor.Linux.Gafgyt.ym 20190211
TrendMicro Possible_BASHLITE.SMLBN3 20190211
TrendMicro-HouseCall Possible_BASHLITE.SMLBN3 20190211
ZoneAlarm by Check Point HEUR:Backdoor.Linux.Gafgyt.af 20190211
Acronis 20190208
AegisLab 20190211
Alibaba 20180921
Avira (no cloud) 20190211
Babable 20180918
Baidu 20190202
Bkav 20190201
CAT-QuickHeal 20190210
CMC 20190211
Comodo 20190211
CrowdStrike Falcon (ML) 20181023
Cybereason 20190109
Cylance 20190211
Cyren 20190211
eGambit 20190211
Endgame 20181108
F-Prot 20190211
F-Secure 20190211
Ikarus 20190211
Sophos ML 20181128
K7AntiVirus 20190211
K7GW 20190211
Kingsoft 20190211
Malwarebytes 20190211
NANO-Antivirus 20190211
Palo Alto Networks (Known Signatures) 20190211
Panda 20190210
Qihoo-360 20190211
Rising 20190211
Sophos AV 20190211
SUPERAntiSpyware 20190206
Symantec Mobile Insight 20190207
TACHYON 20190211
TheHacker 20190203
TotalDefense 20190210
Trapmine 20190123
Trustlook 20190211
VBA32 20190211
VIPRE 20190211
ViRobot 20190211
Webroot 20190211
Yandex 20190210
Zillya 20190211
Zoner 20190211
The file being studied is an ELF! More specifically, it is a EXEC (Executable file) ELF for Unix systems running on Advanced Micro Devices X86-64 machines.
ELF Header
Class ELF64
Data 2's complement, little endian
Header version 1 (current)
OS ABI UNIX - System V
ABI version 0
Object file type EXEC (Executable file)
Required architecture Advanced Micro Devices X86-64
Object file version 0x1
Program headers 3
Section headers 15
ELF sections
ELF Segments
.init
.text
.fini
.rodata
.eh_frame
.ctors
.dtors
.jcr
.data
.bss
Segment without sections
Imported symbols
Exported symbols
ExifTool file metadata
MIMEType
application/octet-stream

CPUByteOrder
Little endian

CPUArchitecture
64 bit

FileType
ELF executable

ObjectFileType
Executable file

CPUType
AMD x86-64

File identification
MD5 31422aa84a65bd8819feb7994ed6f958
SHA1 82b0e9aa71ff4b82ef8027498df0f5028db8fb4e
SHA256 d54dd784c66616d93b680b94eec901fe142f4638b33bcf59d42d5aafbc6cb813
ssdeep
1536:AuJskkoykkviGE+7DADb8cF2WC+z49Wnd9aKi3QY2Rvh/e72fENLxChTmgI3WcnB:xJsk3r+PADb8cF2WC+089aK+QxvheafW

File size 93.9 KB ( 96113 bytes )
File type ELF
Magic literal
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, not stripped

TrID ELF Executable and Linkable format (generic) (100.0%)
Tags
64bits elf

VirusTotal metadata
First submission 2019-02-11 14:09:41 UTC ( 2 months, 1 week ago )
Last submission 2019-02-11 14:09:41 UTC ( 2 months, 1 week ago )
File names vvglma
zbetcheckin_tracker_vvglma
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!