× Cookies sind ausgeschaltet! Diese Seite erfordert aktivierte Cookies, um vollständig zu funktionieren.
SHA256: f9e97ee8a89f91c562d08e3142eaf0ff57aaca96b8aa52f5c7db70ff6ee95113
Dateiname: hardwareid.exe
Erkennungsrate: 18 / 45
Analyse-Datum: 2013-07-10 12:29:05 UTC ( vor 5 Jahre, 10 Monate ) Zeige Neueste
Antivirus Ergebnis Aktualisierung
AntiVir TR/Barys.653.2 20130710
BitDefender Gen:Variant.Barys.653 20130710
Commtouch W32/Trojan.VSWA-1124 20130710
Comodo TrojWare.Win32.Zbot.NEWA 20130709
Emsisoft Gen:Variant.Barys.653 (B) 20130710
GData Gen:Variant.Barys.653 20130710
Ikarus Trojan.Win32.Lebag 20130710
Malwarebytes Hacktool.Citadel.Builder 20130710
McAfee Artemis!09CDC684999C 20130710
McAfee-GW-Edition Heuristic.BehavesLike.Win32.ModifiedUPX.J 20130710
Norman Troj_Generic.LYGWM 20130708
Panda Generic Malware 20130710
Sophos AV Mal/Generic-S 20130710
Symantec WS.Reputation.1 20130710
TheHacker Posible_Worm32 20130710
TrendMicro Cryp_Xin1 20130710
TrendMicro-HouseCall Cryp_Xin1 20130710
VIPRE Trojan.Win32.Generic!BT 20130710
Yandex 20130710
AhnLab-V3 20130710
Antiy-AVL 20130710
Avast 20130710
AVG 20130710
ByteHero 20130617
CAT-QuickHeal 20130708
ClamAV 20130710
DrWeb 20130710
ESET-NOD32 20130710
F-Prot 20130710
Fortinet 20130710
Jiangmin 20130710
K7AntiVirus 20130709
K7GW 20130709
Kaspersky 20130710
Kingsoft 20130708
Microsoft 20130710
eScan 20130710
NANO-Antivirus 20130710
nProtect 20130710
PCTools 20130710
Rising 20130709
SUPERAntiSpyware 20130710
TotalDefense 20130710
VBA32 20130710
ViRobot 20130710
The file being studied is a Portable Executable file! More specifically, it is a DOS EXE file.
Packers identified
F-PROT UPX
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2012-01-11 10:28:16
Entry Point 0x0000ED60
Number of sections 3
PE sections
PE imports
CryptHashData
InitCommonControlsEx
VirtualFree
ExitProcess
VirtualProtect
LoadLibraryA
VirtualAlloc
GetProcAddress
VariantClear
wvnsprintfW
EndDialog
CoInitialize
Number of PE resources by type
RT_ICON 3
RT_GROUP_ICON 1
RT_DIALOG 1
RT_MANIFEST 1
Number of PE resources by language
NEUTRAL 6
PE resources
ExifTool file metadata
FileAccessDate
2014:11:10 10:11:05+01:00

FileCreateDate
2014:11:10 10:11:05+01:00

File identification
MD5 09cdc684999cd014047f20abe095660d
SHA1 d9a1df8837e0e5808f1ec13221475bc3743e6c60
SHA256 f9e97ee8a89f91c562d08e3142eaf0ff57aaca96b8aa52f5c7db70ff6ee95113
ssdeep
384:ossgXpI4+wttbdoyoJ+wva/6ulyJxuFMx8Fu9id5hjrjkpGoVY6muQ8AY4dPcbYr:lI+dJoJzYMJx1xGjr3560Y4dPcbY5

authentihash 49085db014da3ffd110177f1f78063ffe28d93ffed49cd1bdda0ee0542b17ca8
imphash 9cad3d4e9ef16720e686b1d116ffee55
File size 28.0 KB ( 28672 bytes )
File type DOS EXE
Magic literal
MS-DOS executable

TrID Win32 Executable (generic) (42.5%)
DOS Executable Borland Pascal 7.0x (19.2%)
Generic Win/DOS Executable (18.8%)
DOS Executable Generic (18.8%)
VXD Driver (0.2%)
Tags
upx mz

VirusTotal metadata
First submission 2012-06-26 15:21:15 UTC ( vor 6 Jahre, 10 Monate )
Last submission 2017-06-24 18:30:07 UTC ( vor 1 Jahr, 11 Monate )
Dateinamen hardwareid.exe
hardwareid.exe
hardwareid.exe.ubqu
hardwareid.exe
vti-rescan
hardwareid.exe
hardwareid.exe
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

TrendMicro-HouseCall
TrendMicro's heuristic engine has flagged this file as: Suspicious_GEN.F47V1211.

Symantec reputation Suspicious.Insight
Keine Kommentare. Bisher hat kein Mitglied der VirusTotal-Community einen Kommentar zu diesem Punkt verfasst, seien Sie der Erste!

Hinterlassen Sie Ihren Kommentar...

?
Kommentar abschicken

Sie sind nicht angemeldet. Nur registrierte Nutzer können Kommentare hinterlassen, melden Sie sich an und sagen Sie etwas dazu!

Keine Bewertungen. Niemand hat diesen Punkt bisher bewertet, seien Sie der Erste!