× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 0d4366f8bb152143ffbd5a2ccc259f6327d51c6c2eef82ba36fb457144f554fc
File name: BLUEJEANS.EXE
Detection ratio: 27 / 67
Analysis date: 2018-06-27 01:01:28 UTC ( 10 months, 3 weeks ago ) View latest
Antivirus Result Update
Ad-Aware Trojan.GenericKD.30974220 20180626
AegisLab Troj.Generickd!c 20180626
ALYac Trojan.GenericKD.30974220 20180627
Arcabit Trojan.Generic.D1D8A10C 20180626
Avast FileRepMalware 20180626
AVG FileRepMalware 20180626
AVware Trojan.Win32.Generic!BT 20180626
BitDefender Trojan.GenericKD.30974220 20180626
CAT-QuickHeal Trojan.Bluteal 20180626
CrowdStrike Falcon (ML) malicious_confidence_60% (D) 20180530
Cylance Unsafe 20180627
Cyren W32/Trojan.PAUQ-9366 20180627
Emsisoft Trojan.GenericKD.30974220 (B) 20180627
F-Secure Trojan.GenericKD.30974220 20180627
Fortinet W32/PossibleThreat 20180627
GData Trojan.GenericKD.30974220 20180627
Ikarus Trojan.Win32.Bluteal 20180626
K7AntiVirus Riskware ( 0040eff71 ) 20180626
K7GW Riskware ( 0040eff71 ) 20180627
MAX malware (ai score=96) 20180627
McAfee Artemis!C74934FC2563 20180627
McAfee-GW-Edition BehavesLike.Win32.Generic.dh 20180626
Microsoft Trojan:Win32/Bluteal.B!rfn 20180626
eScan Trojan.GenericKD.30974220 20180626
TrendMicro TROJ_GEN.R002C0DFK18 20180626
TrendMicro-HouseCall TROJ_GEN.R002C0DFK18 20180627
VIPRE Trojan.Win32.Generic!BT 20180627
AhnLab-V3 20180626
Alibaba 20180626
Antiy-AVL 20180627
Avast-Mobile 20180626
Avira (no cloud) 20180626
Babable 20180406
Baidu 20180626
Bkav 20180626
ClamAV 20180627
CMC 20180626
Comodo 20180627
Cybereason 20180225
DrWeb 20180627
eGambit 20180627
Endgame 20180612
ESET-NOD32 20180627
F-Prot 20180627
Sophos ML 20180601
Jiangmin 20180626
Kaspersky 20180626
Kingsoft 20180627
Malwarebytes 20180626
NANO-Antivirus 20180626
Palo Alto Networks (Known Signatures) 20180627
Panda 20180626
Rising 20180626
SentinelOne (Static ML) 20180618
Sophos AV 20180626
SUPERAntiSpyware 20180626
Symantec 20180627
Symantec Mobile Insight 20180626
TACHYON 20180626
Tencent 20180627
TheHacker 20180624
Trustlook 20180627
VBA32 20180626
ViRobot 20180626
Webroot 20180627
Yandex 20180626
Zillya 20180626
ZoneAlarm by Check Point 20180626
Zoner 20180626
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2018

Product BlueJeans
Original name BlueJeans.exe
Internal name BlueJeans.exe
File version 2.5.660
Description BlueJeans
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2017-09-01 15:20:05
Entry Point 0x000092F1
Number of sections 7
PE sections
PE imports
HeapSize
GetLastError
InitializeCriticalSectionAndSpinCount
HeapFree
IsProcessorFeaturePresent
EnterCriticalSection
LCMapStringW
ReleaseMutex
GetModuleFileNameW
GetConsoleCP
SetEvent
QueryPerformanceCounter
IsDebuggerPresent
EncodePointer
TlsAlloc
GetOEMCP
GetEnvironmentStringsW
FlushFileBuffers
GetFileAttributesW
WaitForSingleObjectEx
RtlUnwind
FindFirstFileExW
GetStdHandle
SetStdHandle
DeleteCriticalSection
GetCurrentProcess
GetFileType
GetConsoleMode
GetStringTypeW
GetCurrentProcessId
GetUserDefaultLCID
EnumSystemLocalesW
GetCommandLineW
GetCPInfo
UnhandledExceptionFilter
LoadLibraryExW
MultiByteToWideChar
GetStartupInfoW
SetFilePointerEx
FreeEnvironmentStringsW
GetCommandLineA
GetProcAddress
InitializeSListHead
GetLocaleInfoW
ExitProcess
RaiseException
WideCharToMultiByte
TlsFree
FindNextFileW
SetUnhandledExceptionFilter
WriteFile
CreateMutexW
WaitForSingleObject
GetSystemTimeAsFileTime
FindFirstFileW
IsValidLocale
GetACP
HeapReAlloc
DecodePointer
GetModuleHandleW
FreeLibrary
TerminateProcess
CreateEventW
ResetEvent
GetModuleHandleExW
IsValidCodePage
OutputDebugStringW
SetLastError
CreateFileW
CreateProcessW
FindClose
TlsGetValue
MoveFileW
TlsSetValue
CloseHandle
HeapAlloc
GetCurrentThreadId
GetProcessHeap
WriteConsoleW
LeaveCriticalSection
SHFileOperationW
WaitForInputIdle
AllowSetForegroundWindow
Number of PE resources by type
RT_ICON 4
RT_GROUP_ICON 1
RT_VERSION 1
RT_MANIFEST 1
Number of PE resources by language
NEUTRAL 7
PE resources
Debug information
ExifTool file metadata
UninitializedDataSize
0

InitializedDataSize
129536

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
2.5.660.0

LanguageCode
Neutral

FileFlagsMask
0x003f

FileDescription
BlueJeans

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Unicode

LinkerVersion
14.0

EntryPoint
0x92f1

OriginalFileName
BlueJeans.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright 2018

FileVersion
2.5.660

TimeStamp
2017:09:01 17:20:05+02:00

FileType
Win32 EXE

PEType
PE32

InternalName
BlueJeans.exe

ProductVersion
2.5.660

SubsystemVersion
6.0

OSVersion
6.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
BlueJeans

CodeSize
115712

ProductName
BlueJeans

ProductVersionNumber
2.5.660.0

FileTypeExtension
exe

ObjectFileType
Executable application

AssemblyVersion
2.5.660.0

File identification
MD5 c74934fc256399c8a41103ec05d4ce11
SHA1 57c5881ba5afa0ce3c54b7c3b4c92ec24a8ac1b0
SHA256 0d4366f8bb152143ffbd5a2ccc259f6327d51c6c2eef82ba36fb457144f554fc
ssdeep
3072:Jkp7iL9bIFmyTRH3BSghbhGReLa4lMn0kGOAg0FubeJsHOnUtputgY6zXPj/QceM:lXSBNbhboAOiJsHOnOotgYwjBG+

authentihash 3d53ce7609563ec6816a8a991bd3d33fe0bfbf8c05add8e299901965250287fa
imphash c3a152b75d1be42910e80c2dd5bf8f2d
File size 240.5 KB ( 246272 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win64 Executable (generic) (72.3%)
Win32 Executable (generic) (11.8%)
OS/2 Executable (generic) (5.3%)
Generic Win/DOS Executable (5.2%)
DOS Executable Generic (5.2%)
Tags
peexe

VirusTotal metadata
First submission 2018-06-11 16:59:34 UTC ( 11 months, 1 week ago )
Last submission 2018-07-10 11:30:40 UTC ( 10 months, 1 week ago )
File names BLUEJEANS.EXE
14402251
BlueJeans.exe
Advanced heuristic and reputation engines
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!