× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: def06bd5c16bfb5cc875741f847a4e8b2634747544efb50b0c9c5bbe5c12709f
File name: neko.sh
Detection ratio: 23 / 57
Analysis date: 2018-11-09 11:13:01 UTC ( 1 month ago )
Antivirus Result Update
Ad-Aware Generic.Bash.MiraiA.57BA6344 20181109
AhnLab-V3 Script/Bash 20181109
ALYac Generic.Bash.MiraiA.57BA6344 20181109
Arcabit Generic.Bash.MiraiA.57BA6344 20181109
Avast BV:Downloader-SP [Drp] 20181109
AVG BV:Downloader-SP [Drp] 20181109
BitDefender Generic.Bash.MiraiA.57BA6344 20181109
ClamAV Unix.Malware.Agent-6731351-0 20181109
Cyren Trojan.GLPG-2 20181109
DrWeb Linux.DownLoader.691 20181109
Emsisoft Generic.Bash.MiraiA.57BA6344 (B) 20181109
F-Secure Generic.Bash.MiraiA.57BA6344 20181109
Fortinet BASH/MiraiA.SHELL!tr.dldr 20181109
GData Generic.Bash.MiraiA.57BA6344 20181109
Kaspersky HEUR:Trojan-Downloader.Shell.Agent.p 20181109
MAX malware (ai score=99) 20181109
eScan Generic.Bash.MiraiA.57BA6344 20181109
Qihoo-360 Win32/Trojan.Downloader.72e 20181109
Symantec Trojan.Gen.NPE 20181109
Tencent Win32.Trojan-downloader.Agent.Lmav 20181109
TrendMicro TROJ_FRS.VSN19J18 20181109
TrendMicro-HouseCall TROJ_FRS.VSN19J18 20181109
ZoneAlarm by Check Point HEUR:Trojan-Downloader.Shell.Agent.p 20181109
AegisLab 20181109
Alibaba 20180921
Antiy-AVL 20181109
Avast-Mobile 20181109
Avira (no cloud) 20181109
Babable 20180918
Baidu 20181109
Bkav 20181109
CAT-QuickHeal 20181108
CMC 20181109
CrowdStrike Falcon (ML) 20181022
Cybereason 20180225
Cylance 20181109
Endgame 20181108
ESET-NOD32 20181109
F-Prot 20181109
Ikarus 20181109
Sophos ML 20181108
Jiangmin 20181109
K7AntiVirus 20181109
K7GW 20181109
Kingsoft 20181109
Malwarebytes 20181109
McAfee 20181109
McAfee-GW-Edition 20181109
Microsoft 20181109
NANO-Antivirus 20181109
Palo Alto Networks (Known Signatures) 20181109
Panda 20181108
Rising 20181109
SentinelOne (Static ML) 20181011
Sophos AV 20181109
SUPERAntiSpyware 20181107
Symantec Mobile Insight 20181108
TACHYON 20181109
TheHacker 20181108
TotalDefense 20181109
Trustlook 20181109
VBA32 20181109
VIPRE 20181109
ViRobot 20181109
Webroot 20181109
Yandex 20181108
Zillya 20181109
Zoner 20181109
File identification
MD5 aa2d97bb276019e3a123fa443679bb3f
SHA1 513161b476306f8dc750dd1bca59fb81b9b4d17f
SHA256 def06bd5c16bfb5cc875741f847a4e8b2634747544efb50b0c9c5bbe5c12709f
ssdeep
48:9i4Y24Y4Ai4054gi4V46i4a4Ai4n44nxai4x4Yi4p4Ki4I14IwcDi4m4gi4o4siH:9i4H48i4G4gi4V46i4a4Ai444gi4x4Y/

File size 1.8 KB ( 1884 bytes )
File type Shell script
Magic literal
Bourne-Again shell script text executable

TrID Linux/UNIX shell script (100.0%)
Tags
shell

VirusTotal metadata
First submission 2018-10-24 18:22:15 UTC ( 1 month, 2 weeks ago )
Last submission 2018-10-25 14:55:26 UTC ( 1 month, 2 weeks ago )
File names neko.sh
ExifTool file metadata
MIMEType
text/x-bash

FileType
bash script

FileTypeExtension
sh

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Output
Opened files
Read files
Written files
Moved files
Created processes
HTTP requests
DNS requests
TCP connections