× Cookies sind ausgeschaltet! Diese Seite erfordert aktivierte Cookies, um vollständig zu funktionieren.
SHA256: 69f61b266fbcdbfd90b23ce4087206488f509ae3a38f356ff64e4d241e02dfad
Dateiname: LICENS~1.EXE
Erkennungsrate: 14 / 61
Analyse-Datum: 2017-06-29 01:29:32 UTC ( vor 1 Jahr, 10 Monate ) Zeige Neueste
Antivirus Ergebnis Aktualisierung
AegisLab Troj.W32.Generic!c 20170629
Avira (no cloud) TR/Dropper.MSIL.mcflw 20170628
CrowdStrike Falcon (ML) malicious_confidence_99% (W) 20170420
Endgame malicious (high confidence) 20170615
ESET-NOD32 a variant of MSIL/Injector.SMD 20170628
Fortinet MSIL/GenKryptik.AMID!tr 20170629
GData MSIL.Trojan.Injector.6DQ5T8 20170628
Kaspersky HEUR:Trojan.Win32.Generic 20170628
McAfee Artemis!F200F1A01A68 20170628
McAfee-GW-Edition Artemis!Trojan 20170628
Rising Trojan.GenKryptik!8.AA55 (cloud:YvMSCpkT3aV) 20170628
Tencent Win32.Trojan.Generic.Dyyy 20170629
Webroot W32.Malware.Heur 20170629
ZoneAlarm by Check Point HEUR:Trojan.Win32.Generic 20170629
Ad-Aware 20170629
AhnLab-V3 20170628
Alibaba 20170628
ALYac 20170628
Antiy-AVL 20170628
Arcabit 20170628
Avast 20170628
AVG 20170628
AVware 20170628
Baidu 20170628
BitDefender 20170628
Bkav 20170628
CAT-QuickHeal 20170628
ClamAV 20170628
CMC 20170628
Comodo 20170628
Cyren 20170628
DrWeb 20170628
Emsisoft 20170628
F-Prot 20170628
F-Secure 20170628
Ikarus 20170628
Sophos ML 20170607
Jiangmin 20170628
K7AntiVirus 20170627
K7GW 20170628
Kingsoft 20170629
Malwarebytes 20170628
Microsoft 20170628
eScan 20170629
NANO-Antivirus 20170628
nProtect 20170629
Palo Alto Networks (Known Signatures) 20170629
Panda 20170628
Qihoo-360 20170629
SentinelOne (Static ML) 20170516
Sophos AV 20170629
SUPERAntiSpyware 20170629
Symantec 20170628
Symantec Mobile Insight 20170627
TheHacker 20170628
TrendMicro 20170629
TrendMicro-HouseCall 20170629
Trustlook 20170629
VBA32 20170628
VIPRE 20170628
ViRobot 20170628
WhiteArmor 20170627
Yandex 20170628
Zillya 20170628
Zoner 20170629
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
2015 (c) Realtek Semiconductor. All rights reserved.

Product Realtek HD Audio-Manager
Original name RtkNGui.exe
Internal name RtkNGui.exe
File version 1.0.557.1
Description Realtek HD Audio-Manager
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 1970-05-14 22:34:09
Entry Point 0x00084B6E
Number of sections 3
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_ICON 5
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 6
GERMAN 1
PE resources
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
11.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.0.557.1

UninitializedDataSize
0

LanguageCode
Chinese (Traditional)

FileFlagsMask
0x003f

CharacterSet
Windows, Taiwan (Big5)

InitializedDataSize
2467328

EntryPoint
0x84b6e

OriginalFileName
RtkNGui.exe

MIMEType
application/octet-stream

LegalCopyright
2015 (c) Realtek Semiconductor. All rights reserved.

FileVersion
1.0.557.1

TimeStamp
1970:05:14 23:34:09+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
RtkNGui.exe

ProductVersion
1.0.557.1

FileDescription
Realtek HD Audio-Manager

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Realtek Semiconductor

CodeSize
535552

ProductName
Realtek HD Audio-Manager

ProductVersionNumber
1.0.557.1

FileTypeExtension
exe

ObjectFileType
Executable application

Compressed bundles
File identification
MD5 f200f1a01a68445be301d966561791c9
SHA1 c7ccc75cdb294fdae749db0b6581ac4440e2bcf7
SHA256 69f61b266fbcdbfd90b23ce4087206488f509ae3a38f356ff64e4d241e02dfad
ssdeep
24576:gCc0CajFzbjqBHv5HvqGT3X4rEwaie8fTGIHwacFsk:gCcPajRjqBHv5HfTXfwa/8bnm

authentihash 91a6f28d1388cad1fc5e279488b2792a686b0e3a8ebf34e903281d173cc6cc99
imphash f34d5f2d4577ed6d9ceec516c1f5a744
File size 2.9 MB ( 3003392 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic CIL Executable (.NET, Mono, etc.) (63.1%)
Win64 Executable (generic) (23.8%)
Win32 Dynamic Link Library (generic) (5.6%)
Win32 Executable (generic) (3.8%)
Generic Win/DOS Executable (1.7%)
Tags
peexe assembly

VirusTotal metadata
First submission 2017-06-28 16:20:47 UTC ( vor 1 Jahr, 10 Monate )
Last submission 2017-06-29 04:02:44 UTC ( vor 1 Jahr, 10 Monate )
Dateinamen RtkNGui.exe
LICENS~1.EXE
LICENS~1_1.EXE
Keine Kommentare. Bisher hat kein Mitglied der VirusTotal-Community einen Kommentar zu diesem Punkt verfasst, seien Sie der Erste!

Hinterlassen Sie Ihren Kommentar...

?
Kommentar abschicken

Sie sind nicht angemeldet. Nur registrierte Nutzer können Kommentare hinterlassen, melden Sie sich an und sagen Sie etwas dazu!

Keine Bewertungen. Niemand hat diesen Punkt bisher bewertet, seien Sie der Erste!