× Cookies er deaktiveret! Denne side kræver cookies for at fungere korrekt
SHA256: f7e127b8d6ae173308c3621be8ae5ec502eb78491fdce83f881d1aabad5ca46c
Filnavn: ZUVXQiE5knyI.exe
Opdagelses forhold: 13 / 71
Undersøgelses dato: 2019-01-27 00:17:22 UTC ( 3 måneder, 3 ugeriden ) Se seneste
Antivirus Resultat Opdatere
Acronis suspicious 20190124
AVG FileRepMalware 20190126
Bkav HW32.Packed. 20190125
CrowdStrike Falcon (ML) malicious_confidence_100% (D) 20181023
Cylance Unsafe 20190126
Endgame malicious (high confidence) 20181108
Sophos ML heuristic 20181128
Microsoft Trojan:Win32/Emotet.AC!bit 20190126
Qihoo-360 HEUR/QVM20.1.D0B7.Malware.Gen 20190126
Rising Trojan.Kryptik!8.8/N3#99% (RDM+:cmRtazoiaOEkoHOhqp4/aChXg4xX) 20190126
SentinelOne (Static ML) static engine - malicious 20190124
Symantec ML.Attribute.HighConfidence 20190126
Webroot W32.Trojan.Emotet 20190126
Ad-Aware 20190126
AegisLab 20190126
AhnLab-V3 20190126
Alibaba 20180921
ALYac 20190126
Antiy-AVL 20190126
Arcabit 20190126
Avast 20190126
Avast-Mobile 20190125
Avira (no cloud) 20190126
AVware 20180925
Babable 20180917
Baidu 20190124
BitDefender 20190126
CAT-QuickHeal 20190126
ClamAV 20190126
CMC 20190126
Comodo 20190126
Cybereason 20190109
Cyren 20190126
DrWeb 20190126
eGambit 20190126
Emsisoft 20190126
ESET-NOD32 20190126
F-Prot 20190126
F-Secure 20190126
Fortinet 20190126
GData 20190126
Ikarus 20190126
Jiangmin 20190126
K7AntiVirus 20190125
K7GW 20190125
Kaspersky 20190126
Kingsoft 20190126
Malwarebytes 20190126
MAX 20190126
McAfee 20190126
McAfee-GW-Edition 20190126
eScan 20190126
NANO-Antivirus 20190126
Palo Alto Networks (Known Signatures) 20190126
Panda 20190126
Sophos AV 20190126
SUPERAntiSpyware 20190123
TACHYON 20190125
Tencent 20190126
TheHacker 20190124
TotalDefense 20190126
Trapmine 20190123
TrendMicro 20190126
TrendMicro-HouseCall 20190126
Trustlook 20190126
VBA32 20190125
ViRobot 20190126
Yandex 20190125
Zillya 20190125
ZoneAlarm by Check Point 20190126
Zoner 20190125
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 3dfx Interactive, Inc. 2008

Product 3dfx Comms
File version 1.0.20.108
Description 3dfxTools Common Library
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2019-01-27 08:00:16
Entry Point 0x000039A0
Number of sections 9
PE sections
PE imports
SetKernelObjectSecurity
IsWellKnownSid
GetTickCount64
QueryProcessCycleTime
GetThreadPriority
GetTimeZoneInformation
FindNextFileNameW
GetSystemDefaultUILanguage
GetCommandLineW
CreateSemaphoreW
GlobalFlags
GetConsoleFontSize
GetTabbedTextExtentA
KillTimer
GetRawInputDeviceList
GetWindowContextHelpId
GetWindow
IsHungAppWindow
GetMenuDefaultItem
MessageBoxIndirectW
Number of PE resources by type
RT_DIALOG 24
RT_STRING 12
RT_VERSION 1
Number of PE resources by language
ENGLISH US 4
SWEDISH 3
PORTUGUESE 3
GERMAN 3
DUTCH 3
FRENCH 3
PORTUGUESE BRAZILIAN 3
SPANISH MODERN 3
ENGLISH UK 3
SPANISH 3
SPANISH MEXICAN 3
ITALIAN 3
PE resources
Debug information
ExifTool file metadata
UninitializedDataSize
0

LinkerVersion
12.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
2.1.10.138

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

FileDescription
3dfxTools Common Library

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Unicode

InitializedDataSize
167936

EntryPoint
0x39a0

MIMEType
application/octet-stream

LegalCopyright
Copyright 3dfx Interactive, Inc. 2008

FileVersion
1.0.20.108

TimeStamp
2019:01:27 09:00:16+01:00

FileType
Win32 EXE

PEType
PE32

ProductVersion
1.0.2.101

SubsystemVersion
6.0

OSVersion
6.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
3dfx Interactive, Inc.

CodeSize
12288

ProductName
3dfx Comms

ProductVersionNumber
2.6.2.116

FileTypeExtension
exe

ObjectFileType
Dynamic link library

File identification
MD5 530b2d7fa45f818a041ce74b2a762764
SHA1 3035e70182249278efdfad8257659b2e67d156ee
SHA256 f7e127b8d6ae173308c3621be8ae5ec502eb78491fdce83f881d1aabad5ca46c
ssdeep
3072:mk3LhzJ+AeOyvhNk5nJc2mUf3P0+qCWY86bIWLu4Nrme/1Zg:NzJ+AeOyvfk5netUv/

authentihash d9343822c49cb4d65824562fd48c05052e042a008211e1118701effd899038bf
imphash 1d71646ba36e4d694631fb6d826f83c1
File size 172.0 KB ( 176128 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Dynamic Link Library (generic) (38.4%)
Win32 Executable (generic) (26.3%)
OS/2 Executable (generic) (11.8%)
Generic Win/DOS Executable (11.6%)
DOS Executable Generic (11.6%)
Tags
peexe

VirusTotal metadata
First submission 2019-01-27 00:12:11 UTC ( 3 måneder, 3 ugeriden )
Last submission 2019-01-31 23:00:33 UTC ( 3 måneder, 3 ugeriden )
Filnavne ZUVXQiE5knyI.exe
emotet_e2_f7e127b8d6ae173308c3621be8ae5ec502eb78491fdce83f881d1aabad5ca46c_2019-01-27__001002.exe_
BwAoinL1RnI03z.exe
Ingen kommentarer. Ingen af VirusTotal's medlemmer har kommenteret denne enhed, bliv den første til at gøre dette.

Efterlad din kommentar...

?
Send kommentar

Du er ikke logget ind. Kun registrerede brugere kan skrive kommentarer, log ind!

Ingen stemmer. Ingen har bedømt denne enhed endnu, bliv den første der gør det!