× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 039331e339806b0fc74959bb7fcafde3d09a81f239fe66915435175a070a4851
File name: newlog.exe
Detection ratio: 49 / 66
Analysis date: 2018-11-09 01:39:21 UTC ( 1 month, 1 week ago )
Antivirus Result Update
Ad-Aware Gen:Variant.Razy.251432 20181109
AhnLab-V3 Trojan/Win32.Kryptik.C2396492 20181108
ALYac Trojan.MSIL.Crypt.gen 20181109
Arcabit Trojan.Razy.D3D628 20181109
Avast Win32:Malware-gen 20181109
AVG Win32:Malware-gen 20181109
Avira (no cloud) HEUR/AGEN.1013212 20181108
AVware Trojan.Win32.Generic!BT 20180925
BitDefender Gen:Variant.Razy.251432 20181108
CrowdStrike Falcon (ML) malicious_confidence_100% (W) 20181022
Cybereason malicious.d9df6a 20180225
Cylance Unsafe 20181109
Cyren W32/Trojan.FUCP-3416 20181109
DrWeb Trojan.PWS.Stealer.19347 20181109
Emsisoft Gen:Variant.Razy.251432 (B) 20181109
Endgame malicious (high confidence) 20181108
ESET-NOD32 a variant of MSIL/Kryptik.MKV 20181108
F-Secure Gen:Variant.Razy.251432 20181109
Fortinet MSIL/Kryptik.MKV!tr 20181109
GData Gen:Variant.Razy.251432 20181109
Ikarus Trojan.MSIL.Crypt 20181108
Sophos ML heuristic 20181108
Jiangmin Trojan.Generic.bzgbu 20181109
K7AntiVirus Trojan ( 005263901 ) 20181108
K7GW Trojan ( 005263901 ) 20181108
Kaspersky HEUR:Trojan.Win32.Generic 20181109
Malwarebytes Spyware.AgentTesla.Generic 20181109
MAX malware (ai score=100) 20181109
McAfee Packed-VL!F6C3700FECAF 20181109
McAfee-GW-Edition BehavesLike.Win32.Trojan.dc 20181108
Microsoft Trojan:Win32/Tiggre!rfn 20181109
eScan Gen:Variant.Razy.251432 20181108
NANO-Antivirus Trojan.Win32.Kryptik.exsaif 20181108
Palo Alto Networks (Known Signatures) generic.ml 20181109
Panda Trj/GdSda.A 20181108
Qihoo-360 Win32/Trojan.616 20181109
Rising Trojan.Kryptik!8.8 (CLOUD) 20181109
SentinelOne (Static ML) static engine - malicious 20181011
Sophos AV Mal/Generic-S 20181108
Symantec W32.Golroted 20181108
Tencent Win32.Trojan.Generic.Efap 20181109
TheHacker Trojan/Kryptik.mkv 20181108
TrendMicro TSPY_GOLROTED.CBQ 20181109
TrendMicro-HouseCall TSPY_GOLROTED.CBQ 20181109
VBA32 TrojanPSW.Stealer 20181108
Webroot W32.Trojan.Tiggre 20181109
Yandex Trojan.Agent!UeOAjnmdJIE 20181108
Zillya Trojan.Kryptik.Win32.1353704 20181108
ZoneAlarm by Check Point HEUR:Trojan.Win32.Generic 20181109
AegisLab 20181109
Alibaba 20180921
Avast-Mobile 20181108
Babable 20180918
Baidu 20181108
Bkav 20181108
CAT-QuickHeal 20181108
ClamAV 20181108
CMC 20181108
F-Prot 20181109
Kingsoft 20181109
SUPERAntiSpyware 20181107
Symantec Mobile Insight 20181108
TACHYON 20181109
TotalDefense 20181108
Trustlook 20181109
ViRobot 20181108
Zoner 20181109
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
(c) 2015 Coca-Cola Enterprises

Product Coca-Cola Enterprises Dc Noobb
Original name newlog.exe
Internal name newlog.exe
File version 2.5.7.3
Description Coca-Cola Enterprises
Comments Coca-Cola Enterprises Noobb
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2018-02-03 20:29:22
Entry Point 0x00041D8E
Number of sections 3
.NET details
Module Version ID 687459a5-a88f-4f16-8507-b5a9f1182c31
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_ICON 3
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 5
PE resources
ExifTool file metadata
SubsystemVersion
4.0

Comments
Coca-Cola Enterprises Noobb

LinkerVersion
8.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
2.5.7.3

LanguageCode
Neutral

FileFlagsMask
0x003f

FileDescription
Coca-Cola Enterprises

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Unicode

InitializedDataSize
20480

EntryPoint
0x41d8e

OriginalFileName
newlog.exe

MIMEType
application/octet-stream

LegalCopyright
(c) 2015 Coca-Cola Enterprises

FileVersion
2.5.7.3

TimeStamp
2018:02:03 21:29:22+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
newlog.exe

ProductVersion
2.5.7.3

UninitializedDataSize
0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Coca-Cola Enterprises

CodeSize
262144

ProductName
Coca-Cola Enterprises Dc Noobb

ProductVersionNumber
2.5.7.3

FileTypeExtension
exe

ObjectFileType
Executable application

AssemblyVersion
3.13.4.8

File identification
MD5 f6c3700fecafc9a337a2d3610ca472c5
SHA1 8fa1a70d9df6adf75f43565e90119808e241cd93
SHA256 039331e339806b0fc74959bb7fcafde3d09a81f239fe66915435175a070a4851
ssdeep
3072:u44a3wvS/biyUWa7GYmOa264WXjRJjK2b21f6qy5v+SJqhp/PmKKZ8uDvvQj85:irvS/bih3mB26KcV+SJU9mKUDvvQ4

authentihash 20403eaf41a297b90b23625c51b04cc3360d2caebd92286f678a21ee8ecbdd31
imphash f34d5f2d4577ed6d9ceec516c1f5a744
File size 280.0 KB ( 286720 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic CIL Executable (.NET, Mono, etc.) (79.2%)
Win32 Dynamic Link Library (generic) (7.1%)
Win32 Executable (generic) (4.8%)
Win16/32 Executable Delphi generic (2.2%)
OS/2 Executable (generic) (2.1%)
Tags
peexe assembly

VirusTotal metadata
First submission 2018-02-06 21:02:04 UTC ( 10 months, 2 weeks ago )
Last submission 2018-04-09 04:36:50 UTC ( 8 months, 2 weeks ago )
File names mps.exe
f6c3700fecafc9a337a2d3610ca472c5.exe
VirusShare_f6c3700fecafc9a337a2d3610ca472c5
newlog.exe
output.112816054.txt
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!