× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 0a24027823368ed18abe29516b408dd01877162b1d298ea01c1b113bdab03fa6
File name: EEB5C48F.exe
Detection ratio: 35 / 66
Analysis date: 2018-10-28 23:13:04 UTC ( 2 months, 2 weeks ago ) View latest
Antivirus Result Update
Ad-Aware Trojan.GenericKD.40650641 20181028
Arcabit Trojan.Generic.D26C4791 20181028
Avast Win32:BankerX-gen [Trj] 20181028
AVG Win32:BankerX-gen [Trj] 20181028
BitDefender Trojan.GenericKD.40650641 20181028
Bkav HW32.Packed. 20181025
CrowdStrike Falcon (ML) malicious_confidence_100% (W) 20181022
Cybereason malicious.f58bc2 20180225
Cylance Unsafe 20181029
Emsisoft Trojan.GenericKD.40650641 (B) 20181028
Endgame malicious (high confidence) 20180730
ESET-NOD32 a variant of Win32/Kryptik.GMAV 20181028
F-Secure Trojan.GenericKD.40650641 20181028
Fortinet W32/Kryptik.GMAV!tr 20181028
GData Trojan.GenericKD.40650641 20181028
Sophos ML heuristic 20180717
K7AntiVirus Trojan ( 0053b6a31 ) 20181028
K7GW Trojan ( 0053b6a31 ) 20181025
Kaspersky Trojan-Banker.Win32.Emotet.bkwv 20181028
Malwarebytes Trojan.Emotet 20181028
MAX malware (ai score=86) 20181029
McAfee Emotet-FHZ!8A6AD83F58BC 20181028
McAfee-GW-Edition BehavesLike.Win32.Emotet.cc 20181028
Microsoft Trojan:Win32/Emotet.AC!bit 20181028
eScan Trojan.GenericKD.40650641 20181028
Palo Alto Networks (Known Signatures) generic.ml 20181029
Panda Trj/GdSda.A 20181028
Qihoo-360 HEUR/QVM20.1.CB83.Malware.Gen 20181029
Rising Trojan.Fuerboos!8.EFC8 (TFE:4:ukNLRCcMhuO) 20181028
SentinelOne (Static ML) static engine - malicious 20181011
Sophos AV Mal/Generic-S 20181028
Symantec Trojan.Gen.2 20181028
Tencent Win32.Trojan-banker.Emotet.Ebqw 20181029
Webroot W32.Trojan.Emotet 20181029
ZoneAlarm by Check Point Trojan-Banker.Win32.Emotet.bkwv 20181028
AegisLab 20181028
AhnLab-V3 20181028
Alibaba 20180921
ALYac 20181028
Antiy-AVL 20181028
Avast-Mobile 20181028
Avira (no cloud) 20181028
Babable 20180918
Baidu 20181026
CAT-QuickHeal 20181028
ClamAV 20181028
CMC 20181028
Cyren 20181028
DrWeb 20181028
eGambit 20181029
F-Prot 20181028
Ikarus 20181028
Jiangmin 20181028
Kingsoft 20181029
NANO-Antivirus 20181028
SUPERAntiSpyware 20181022
Symantec Mobile Insight 20181026
TACHYON 20181028
TheHacker 20181025
TotalDefense 20181028
TrendMicro 20181028
TrendMicro-HouseCall 20181028
VBA32 20181026
ViRobot 20181028
Yandex 20181026
Zillya 20181028
Zoner 20181027
The file being studied is a Portable Executable file! More specifically, it is a unknown file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright (c) 2001

Product Sola Plug-in
Original name NPJava13.dll
Internal name Sola Plug-in
File version 1, 4, 2, 50
Description Sola Plug-in 1.4.2_05 for Netscape Navigator (DLL Helper)
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2018-10-27 08:15:23
Entry Point 0x0000156F
Number of sections 6
PE sections
PE imports
QueryServiceStatusEx
SetKernelObjectSecurity
CryptVerifySignatureA
AllocateAndInitializeSid
CryptExportKey
ClusterRegEnumValue
OpenCluster
CertEnumSystemStore
CertAddStoreToCollection
JetCommitTransaction
JetRetrieveColumn
GetCurrentObject
DeleteEnhMetaFile
GetMiterLimit
CreateRectRgn
GetBoundsRect
GetICMProfileA
GetBkMode
FrameRgn
CreateSolidBrush
Rectangle
PtVisible
PlayMetaFile
RealizePalette
SetSystemPaletteUse
GetCommandLineA
SetThreadLocale
CreateTimerQueueTimer
LCMapStringW
GetStringScripts
GetProcessWorkingSetSize
UnmapViewOfFile
GetConsoleCursorInfo
ActivateActCtx
GetSystemWindowsDirectoryW
GetLocalTime
GetMailslotInfo
lstrcpynA
UnlockFileEx
IsValidLocale
SafeArrayUnlock
VarBstrFromI4
SysAllocStringByteLen
VarR8FromStr
VarBstrFromCy
RpcErrorGetNextRecord
NdrSimpleStructUnmarshall
I_RpcServerCheckClientRestriction
RpcAsyncInitializeHandle
NdrConformantStringMarshall
SetupDiSetSelectedDevice
StrCatBuffA
StrCpyNW
SHRegEnumUSKeyW
FindWindowExA
GetCaretBlinkTime
GetForegroundWindow
IsCharUpperA
PostThreadMessageW
LookupIconIdFromDirectory
LoadMenuA
SetClassLongW
SetLastErrorEx
GetScrollRange
LockWindowUpdate
GetPhysicalCursorPos
midiInOpen
setsockopt
g_rgSCardT0Pci
CoUnmarshalInterface
CoEnableCallCancellation
PdhCloseLog
CoInternetIsFeatureEnabledForUrl
CoInternetIsFeatureZoneElevationEnabled
Number of PE resources by type
RT_DIALOG 20
RT_STRING 10
RT_VERSION 1
Number of PE resources by language
ENGLISH US 4
ITALIAN NEUTRAL 3
SWEDISH NEUTRAL 3
CHINESE TRADITIONAL 3
SPANISH NEUTRAL 3
GERMAN NEUTRAL 3
CHINESE SIMPLIFIED 3
JAPANESE DEFAULT 3
FRENCH NEUTRAL 3
KOREAN 3
PE resources
Debug information
ExifTool file metadata
UninitializedDataSize
0

LinkerVersion
12.0

ImageVersion
0.0

ProductName
Sola Plug-in

FileVersionNumber
1.4.2.50

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

ImageFileCharacteristics
No relocs, Executable, 32-bit

CharacterSet
Windows, Latin1

InitializedDataSize
131072

FileTypeExtension
exe

OriginalFileName
NPJava13.dll

MIMEType
application/x-java-applet;version=1.3.1|application/x-java-bean;version=1.3.1|application/x-java-applet;version=1.4|application/x-java-bean;version=1.4|application/x-java-applet;version=1.4.1|application/x-java-bean;version=1.4.1

Subsystem
Windows GUI

FileExtents
|||||

PEType
PE32

FileVersion
1, 4, 2, 50

TimeStamp
2018:10:27 09:15:23+01:00

FileType
Win32 EXE

FileOpenName
Sola Applet|JavaBeans|Sola Applet|SolaBeans|Sola Applet|SolaBeans

InternalName
Sola Plug-in

SubsystemVersion
5.0

ProductVersion
1, 4, 2, 50

FileDescription
Sola Plug-in 1.4.2_05 for Netscape Navigator (DLL Helper)

OSVersion
5.0

FileOS
Win32

LegalCopyright
Copyright (c) 2001

MachineType
Intel 386 or later, and compatibles

CompanyName
SolaSoft / Sun Microsystems, Inc.

CodeSize
8192

FileSubtype
0

ProductVersionNumber
1.4.2.50

EntryPoint
0x156f

ObjectFileType
Dynamic link library

File identification
MD5 8a6ad83f58bc2cb43c048139205fcc21
SHA1 eb849e653e7b1ba7332bd4e6696a10c6f387acb1
SHA256 0a24027823368ed18abe29516b408dd01877162b1d298ea01c1b113bdab03fa6
ssdeep

authentihash fc293bc5e08200a8f1a4d1d2c5351aed930f9222db0bc8830842ce973a302eff
imphash 755d947e4ab2ece5ca3237e96ca24540
File size 140.0 KB ( 143360 bytes )
File type unknown
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Dynamic Link Library (generic) (38.4%)
Win32 Executable (generic) (26.3%)
OS/2 Executable (generic) (11.8%)
Generic Win/DOS Executable (11.6%)
DOS Executable Generic (11.6%)
VirusTotal metadata
First submission 2018-10-27 01:18:41 UTC ( 2 months, 3 weeks ago )
Last submission 2018-10-27 01:18:41 UTC ( 2 months, 3 weeks ago )
File names EEB5C48F.exe
Sola Plug-in
NPJava13.dll
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!