× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: fb88615cf524c2470e4d6861e3e01b79e38e91ca61e650af6968ba3715e7198a
File name: 21
Detection ratio: 26 / 58
Analysis date: 2019-02-11 17:37:10 UTC ( 2 months, 1 week ago ) View latest
Antivirus Result Update
AegisLab Trojan.Linux.Mirai.4!c 20190211
AhnLab-V3 Linux/Mirai.Gen10 20190211
Antiy-AVL Trojan[Backdoor]/Linux.Mirai.b 20190211
Avast ELF:Hajime-Q [Trj] 20190211
Avast-Mobile ELF:Mirai-VK [Trj] 20190211
AVG ELF:Hajime-Q [Trj] 20190211
Avira (no cloud) LINUX/Mirai.hbzbo 20190211
ClamAV Unix.Trojan.Gafgyt-6748839-0 20190211
DrWeb Linux.Mirai.1232 20190211
ESET-NOD32 a variant of Linux/Mirai.DG 20190211
F-Secure Malware.LINUX/Mirai.hbzbo 20190211
Fortinet ELF/Mirai.AE!tr 20190211
GData Linux.Trojan.Agent.FANOJ9 20190211
Ikarus Trojan.Linux.Mirai 20190211
Jiangmin Backdoor.Linux.cftn 20190211
Kaspersky HEUR:Backdoor.Linux.Mirai.b 20190211
McAfee Linux/Mirai.l 20190211
McAfee-GW-Edition Linux/Mirai.l 20190211
NANO-Antivirus Trojan.ElfArm32.Mirai.fmuuip 20190211
Qihoo-360 Win32/Trojan.IM.fb5 20190211
Sophos AV Linux/DDoS-CIA 20190211
Symantec Linux.Mirai 20190211
Tencent Linux.Backdoor.Mirai.Wvuj 20190211
TrendMicro Possible_MIRAI.SMLBO20 20190211
TrendMicro-HouseCall Possible_MIRAI.SMLBO20 20190211
ZoneAlarm by Check Point HEUR:Backdoor.Linux.Mirai.b 20190211
Acronis 20190207
Ad-Aware 20190211
Alibaba 20180921
ALYac 20190211
Arcabit 20190210
Babable 20180917
Baidu 20190201
BitDefender 20190211
Bkav 20190201
CAT-QuickHeal 20190210
CMC 20190211
Comodo 20190211
CrowdStrike Falcon (ML) 20181023
Cybereason 20190109
Cylance 20190211
Cyren 20190211
eGambit 20190211
Emsisoft 20190211
Endgame 20181108
F-Prot 20190211
Sophos ML 20181128
K7AntiVirus 20190211
K7GW 20190211
Kingsoft 20190211
Malwarebytes 20190211
MAX 20190211
Microsoft 20190211
eScan 20190211
Palo Alto Networks (Known Signatures) 20190211
Panda 20190211
Rising 20190211
SentinelOne (Static ML) 20190203
SUPERAntiSpyware 20190206
Symantec Mobile Insight 20190206
TACHYON 20190210
TheHacker 20190203
TotalDefense 20190210
Trapmine 20190123
Trustlook 20190211
VBA32 20190211
VIPRE 20190211
ViRobot 20190211
Webroot 20190211
Yandex 20190210
Zillya 20190211
Zoner 20190211
The file being studied is an ELF! More specifically, it is a EXEC (Executable file) ELF for Unix systems running on ARM machines.
ELF Header
Class ELF32
Data 2's complement, little endian
Header version 1 (current)
OS ABI ARM
ABI version 0
Object file type EXEC (Executable file)
Required architecture ARM
Object file version 0x1
Program headers 6
Section headers 18
ELF sections
ELF Segments
Segment without sections
.interp
.interp
.hash
.dynsym
.dynstr
.rel.plt
.init
.plt
.text
.fini
.rodata
.ctors
.dtors
.dynamic
.got
.data
.bss
.dynamic
Segment without sections
Shared libraries
Imported symbols
Exported symbols
ExifTool file metadata
MIMEType
application/octet-stream

CPUByteOrder
Little endian

CPUArchitecture
32 bit

FileType
ELF executable

ObjectFileType
Executable file

CPUType
Unknown (40)

File identification
MD5 deb57119dbe38f5127a492267c24a5d3
SHA1 94dd8219667f7614b487d9315d0c47d59bff9aeb
SHA256 fb88615cf524c2470e4d6861e3e01b79e38e91ca61e650af6968ba3715e7198a
ssdeep
1536:AZvXCR9EDyh5G0ZnerQWt89OMRn1ol3v5y/7/fiCyikSgHR:svXC39Q89OMpul/cz3iC

File size 53.8 KB ( 55040 bytes )
File type ELF
Magic literal
ELF 32-bit LSB executable, ARM, version 1, dynamically linked (uses shared libs), stripped

TrID ELF Executable and Linkable format (generic) (100.0%)
Tags
elf

VirusTotal metadata
First submission 2019-02-10 23:49:59 UTC ( 2 months, 1 week ago )
Last submission 2019-02-17 18:31:54 UTC ( 2 months ago )
File names 192
363
21
121
3
29
14
51
frosty.arm5
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!