× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 039764db203b0271e82e16d908ff018d74d988f439c1fad9f9488b17821ee9d1
File name: output.114191769.txt
Detection ratio: 44 / 68
Analysis date: 2018-10-15 03:35:36 UTC ( 5 months, 1 week ago ) View latest
Antivirus Result Update
Ad-Aware Trojan.GenericKD.40532479 20181015
ALYac Trojan.GenericKD.40532479 20181015
Antiy-AVL Trojan/MSIL.Inject 20181015
Arcabit Trojan.Generic.D26A79FF 20181015
Avast Win32:Trojan-gen 20181015
AVG Win32:Trojan-gen 20181015
Avira (no cloud) HEUR/AGEN.1035258 20181014
BitDefender Trojan.GenericKD.40532479 20181015
CAT-QuickHeal Trojan.IGENERIC 20181013
Comodo UnclassifiedMalware 20181015
CrowdStrike Falcon (ML) malicious_confidence_70% (D) 20180723
Cylance Unsafe 20181015
Cyren W32/MSIL_Kryptik.CV.gen!Eldorado 20181015
DrWeb Trojan.PWS.Stealer.23680 20181015
Emsisoft Trojan.GenericKD.40532479 (B) 20181015
ESET-NOD32 a variant of MSIL/Kryptik.PPC 20181014
F-Prot W32/MSIL_Kryptik.CV.gen!Eldorado 20181015
F-Secure Trojan.GenericKD.40532479 20181015
Fortinet MSIL/Kryptik.PMO!tr 20181015
GData Trojan.GenericKD.40532479 20181015
Ikarus Trojan.Inject 20181014
K7AntiVirus Trojan ( 0053ce9a1 ) 20181015
K7GW Trojan ( 0053ce9a1 ) 20181013
Kaspersky HEUR:Trojan.MSIL.Inject.gen 20181015
Malwarebytes Trojan.PasswordStealer.MSIL.Generic 20181015
MAX malware (ai score=100) 20181015
McAfee RDN/Generic.tfr 20181015
McAfee-GW-Edition RDN/Generic.tfr 20181015
Microsoft PWS:Win32/Primarypass.A 20181015
eScan Trojan.GenericKD.40532479 20181015
NANO-Antivirus Trojan.Win32.Inject.fitnoq 20181015
Palo Alto Networks (Known Signatures) generic.ml 20181015
Panda Trj/GdSda.A 20181014
Qihoo-360 Win32/Trojan.855 20181015
SentinelOne (Static ML) static engine - malicious 20181011
Sophos AV Troj/Fareit-FWJ 20181015
Symantec Trojan.Gen.2 20181015
Tencent Win32.Backdoor.Lokibot.Auto 20181015
TrendMicro TROJ_GEN.R002C0DIS18 20181010
TrendMicro-HouseCall TROJ_GEN.R002C0DIS18 20181010
VBA32 TScope.Trojan.MSIL 20181012
Webroot W32.Trojan.Gen 20181015
Zillya Trojan.Inject.Win32.257214 20181012
ZoneAlarm by Check Point HEUR:Trojan.MSIL.Inject.gen 20181015
AegisLab 20181015
AhnLab-V3 20181014
Alibaba 20180921
Avast-Mobile 20181014
Babable 20180918
Baidu 20181012
Bkav 20181014
ClamAV 20181014
CMC 20181014
Cybereason 20180225
eGambit 20181015
Endgame 20180730
Sophos ML 20180717
Jiangmin 20181015
Kingsoft 20181015
Rising 20181012
SUPERAntiSpyware 20181015
Symantec Mobile Insight 20181001
TACHYON 20181015
TheHacker 20181011
TotalDefense 20181014
Trustlook 20181015
VIPRE 20181014
ViRobot 20181014
Yandex 20181012
Zoner 20181014
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2018 Ace Hardware Corporation

Product Optimizes and tweaks your Windows
Original name LUCKY5.exe
Internal name LUCKY5.exe
File version 11.14.19.2
Description Optimizes and tweaks your Windows
Comments ixifelakoquxitokad
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2008-08-26 16:29:12
Entry Point 0x0006AEAE
Number of sections 3
.NET details
Module Version ID ec2fc0e6-6a72-483c-9123-87eb7044c571
TypeLib ID 47b60fc5-5c34-4e18-88f3-26d5c7907df3
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_ICON 12
RT_GROUP_ICON 1
RT_VERSION 1
RT_MANIFEST 1
Number of PE resources by language
NEUTRAL 15
PE resources
ExifTool file metadata
SubsystemVersion
4.0

Comments
ixifelakoquxitokad

LinkerVersion
8.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
11.14.19.2

LanguageCode
Neutral

FileFlagsMask
0x003f

FileDescription
Optimizes and tweaks your Windows

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Unicode

InitializedDataSize
135168

EntryPoint
0x6aeae

OriginalFileName
LUCKY5.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright 2018 Ace Hardware Corporation

FileVersion
11.14.19.2

TimeStamp
2008:08:26 18:29:12+02:00

FileType
Win32 EXE

PEType
PE32

InternalName
LUCKY5.exe

ProductVersion
11.14.19.2

UninitializedDataSize
0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Ace Hardware Corporation

CodeSize
430080

ProductName
Optimizes and tweaks your Windows

ProductVersionNumber
11.14.19.2

FileTypeExtension
exe

ObjectFileType
Executable application

AssemblyVersion
0.0.0.0

File identification
MD5 40e11667fdb70b2c0420bd8760048557
SHA1 fbba6b3f2ca9524864c485290e60a2f5e5d7fc3e
SHA256 039764db203b0271e82e16d908ff018d74d988f439c1fad9f9488b17821ee9d1
ssdeep
6144:lVKRtLFCzWhkg09eSMdvU7tItXWey3t6ZQX46aH4dUaIXZziZRKave:eRtLwekjeSKUCMHdNXU42aIXZePve

authentihash 060e2bc3a3fe0c1a56b6afccae1971de58c9ac358915d95dd577f6c6703fc9c4
imphash f34d5f2d4577ed6d9ceec516c1f5a744
File size 552.5 KB ( 565760 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic CIL Executable (.NET, Mono, etc.) (62.0%)
Win64 Executable (generic) (23.4%)
Win32 Dynamic Link Library (generic) (5.5%)
Win32 Executable (generic) (3.8%)
OS/2 Executable (generic) (1.7%)
Tags
peexe assembly

VirusTotal metadata
First submission 2018-09-27 15:30:18 UTC ( 5 months, 3 weeks ago )
Last submission 2018-10-29 07:27:08 UTC ( 4 months, 3 weeks ago )
File names output.114191769.txt
LUCKY5.exe
40e11667fdb70b2c0420bd8760048557
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!