× I cookies sono disabilitati! Questo sito richiede i cookies abilitati per funzionare correttamente
SHA256: f86529d7676383796c50f10fc8458924d736ffea161e5131a89a2e23dd5e1d8e
Nome del file: secbino
Rapporto rilevamento: 30 / 56
Data analisi: 2017-09-18 01:57:39 UTC ( 1 mese fa )
Antivirus Risultato Aggiornamento
Ad-Aware Android.Exploit.Exploid.G 20170918
ALYac Android.Exploit.Exploid.G 20170917
Antiy-AVL Trojan[Exploit]/Linux.Lotoor.x 20170918
Arcabit Android.Exploit.Exploid.G 20170918
Avast ELF:Lootor-E [Expl] 20170918
Avast-Mobile ELF:Lootor-E [Expl] 20170829
AVG ELF:Lootor-E [Expl] 20170918
Avira (no cloud) EXP/Linux.Lotoor.P 20170917
AVware Exploit.AndroidOS.Lotoor 20170917
BitDefender Android.Exploit.Exploid.G 20170918
ClamAV Andr.Exploit.Exploid-1 20170918
Cyren ELF/Trojan.IDDO-3 20170918
DrWeb Android.Gongfu.8 20170918
Emsisoft Android.Exploit.Exploid.G (B) 20170918
ESET-NOD32 Android/DroidKungFu.C 20170918
F-Secure Android.Exploit.Exploid.G 20170918
GData Android.Exploit.Exploid.G 20170918
Ikarus AndroidOS.Exploit.Exploid 20170917
Jiangmin Exploit.Linux.ao 20170918
Kaspersky Exploit.Linux.Lotoor.x 20170918
MAX malware (ai score=87) 20170918
eScan Android.Exploit.Exploid.G 20170918
NANO-Antivirus Exploit.Lotoor.dppux 20170918
Qihoo-360 Win32/Trojan.d5d 20170918
Sophos AV Andr/DroidRt-A 20170918
Symantec Trojan.Gen.2 20170917
Tencent Linux.Exploit.Lotoor.Akyr 20170918
TrendMicro-HouseCall ELF_LOTOOR.A 20170918
VIPRE Exploit.Linux.Lotoor (v) 20170918
ZoneAlarm by Check Point Exploit.Linux.Lotoor.x 20170918
AegisLab 20170918
AhnLab-V3 20170917
Alibaba 20170911
Baidu 20170915
CAT-QuickHeal 20170916
CMC 20170917
Comodo 20170918
CrowdStrike Falcon (ML) 20170804
Cylance 20170918
Endgame 20170821
F-Prot 20170918
Fortinet 20170918
Sophos ML 20170914
K7AntiVirus 20170917
K7GW 20170918
Kingsoft 20170918
Malwarebytes 20170917
McAfee 20170918
McAfee-GW-Edition 20170918
Microsoft 20170918
nProtect 20170918
Palo Alto Networks (Known Signatures) 20170918
Panda 20170917
Rising 20170918
SentinelOne (Static ML) 20170806
SUPERAntiSpyware 20170917
Symantec Mobile Insight 20170917
TheHacker 20170916
TotalDefense 20170917
Trustlook 20170918
VBA32 20170915
ViRobot 20170917
WhiteArmor 20170829
Yandex 20170908
Zillya 20170916
The file being studied is an ELF! More specifically, it is a EXEC (Executable file) ELF for Unix systems running on ARM machines.
ELF Header
Class ELF32
Data 2's complement, little endian
Header version 1 (current)
OS ABI UNIX - System V
ABI version 0
Object file type EXEC (Executable file)
Required architecture ARM
Object file version 0x1
Program headers 7
Section headers 21
ELF sections
ELF Segments
.ARM.exidx
Segment without sections
.interp
.interp
.hash
.dynsym
.dynstr
.rel.dyn
.rel.plt
.plt
.text
.rodata
.ARM.extab
.ARM.exidx
.preinit_array
.init_array
.fini_array
.ctors
.dynamic
.got
.dynamic
Segment without sections
Shared libraries
Imported symbols
Exported symbols
ExifTool file metadata
MIMEType
application/octet-stream

CPUByteOrder
Little endian

CPUArchitecture
32 bit

FileType
ELF executable

ObjectFileType
Executable file

CPUType
Unknown (40)

Compressed bundles
File identification
MD5 e789e154ad68e2cbb2d405220bc01529
SHA1 c6908dc5f7c072d89d0f8359a0a2add9658b016a
SHA256 f86529d7676383796c50f10fc8458924d736ffea161e5131a89a2e23dd5e1d8e
ssdeep
96:F4nxsgHRRfN/GGKlfHAusXR2GAMd+NrRGs/8UyUip:F4nxHdufgFXIGrd+vb/8U

File size 6.9 KB ( 7032 bytes )
File type ELF
Magic literal
ELF 32-bit LSB executable, ARM, version 1 (SYSV), dynamically linked (uses shared libs), stripped

TrID ELF Executable and Linkable format (generic) (100.0%)
Tags
elf

VirusTotal metadata
First submission 2011-07-05 04:48:34 UTC ( 6 anni, 3 mesi fa )
Last submission 2015-05-08 15:06:36 UTC ( 2 anni, 5 mesi fa )
Nomi dei files 5YkFdF.sys
oMpdyXX21.docm
KM3VszJS.tar
VirusShare_e789e154ad68e2cbb2d405220bc01529
aa
secbino
VirusShare_e789e154ad68e2cbb2d405220bc01529.elf
foobin
J332r13H_.msc
e789e154ad68e2cbb2d405220bc01529
secbino.elf
c6908dc5f7c072d89d0f8359a0a2add9658b016a.apk
jN6Mo9Bs4.vcf
E789E154AD68E2CBB2D405220BC01529
VirusShare_e789e154ad68e2cbb2d405220bc01529
test.txt
Nessun commento. Nessun membro della Comunità di VirusTotal ha commentato questo item, sii il primo a farlo!

Lascia il tuo commento...

?
Posta commento

Non ti sei ancora collegato. Solo gli utenti registrati possono commentare, collegati ed esprimi il tuo giudizio!

Nessun voto. Nessuno ha ancora votato questo item, sii il primo a farlo!