× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 10a02d3fea79599ab6fa9a8518045cc41b5fb50c57c01f69242b8bdb4b79d8c8
File name: 10a02d3fea79599ab6fa9a8518045cc41b5fb50c57c01f69242b8bdb4b79d8c8
Detection ratio: 18 / 65
Analysis date: 2018-11-06 02:17:21 UTC ( 3 months, 1 week ago ) View latest
Antivirus Result Update
Avast FileRepMalware 20181106
AVG FileRepMalware 20181106
Bkav HW32.Packed. 20181102
CrowdStrike Falcon (ML) malicious_confidence_100% (D) 20181022
Cybereason malicious.d61d16 20180225
Endgame malicious (high confidence) 20180730
Sophos ML heuristic 20180717
K7AntiVirus Trojan ( 0053b6a31 ) 20181105
K7GW Trojan ( 0053b6a31 ) 20181105
McAfee-GW-Edition BehavesLike.Win32.Emotet.ch 20181105
Microsoft Trojan:Win32/Emotet.AC!bit 20181106
NANO-Antivirus Virus.Win32.Gen.ccmw 20181105
Palo Alto Networks (Known Signatures) generic.ml 20181106
Qihoo-360 HEUR/QVM20.1.03C1.Malware.Gen 20181106
Rising Malware.Heuristic!ET#96% (RDM+:cmRtazrBmFLSEgBp93fGIOrSPkaR) 20181106
SentinelOne (Static ML) static engine - malicious 20181011
Symantec ML.Attribute.HighConfidence 20181105
Webroot W32.Trojan.Emotet 20181106
Ad-Aware 20181106
AegisLab 20181106
AhnLab-V3 20181105
Alibaba 20180921
ALYac 20181106
Antiy-AVL 20181106
Arcabit 20181106
Avast-Mobile 20181105
Avira (no cloud) 20181105
Babable 20180918
Baidu 20181105
BitDefender 20181106
CAT-QuickHeal 20181105
ClamAV 20181106
CMC 20181105
Cylance 20181106
Cyren 20181106
DrWeb 20181106
eGambit 20181106
Emsisoft 20181106
ESET-NOD32 20181105
F-Prot 20181106
F-Secure 20181106
Fortinet 20181106
GData 20181106
Ikarus 20181105
Jiangmin 20181106
Kaspersky 20181106
Kingsoft 20181106
Malwarebytes 20181106
MAX 20181106
McAfee 20181106
eScan 20181105
Panda 20181105
Sophos AV 20181105
SUPERAntiSpyware 20181031
Symantec Mobile Insight 20181105
TACHYON 20181106
Tencent 20181106
TheHacker 20181104
TrendMicro 20181105
TrendMicro-HouseCall 20181105
Trustlook 20181106
VBA32 20181105
ViRobot 20181105
Yandex 20181102
Zillya 20181105
ZoneAlarm by Check Point 20181106
Zoner 20181106
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright (c) 2001

Product Sola Plug-in
Original name NPJava13.dll
Internal name Aban Plug-in
File version 1, 4, 2, 50
Description Aban Plug-in 1.4.2_05 for Netscape Navigator (DLL Helper)
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2018-11-06 02:02:12
Entry Point 0x0000171C
Number of sections 6
PE sections
PE imports
SetSecurityDescriptorOwner
CryptDeriveKey
RegOpenKeyA
StartServiceCtrlDispatcherA
CryptDuplicateHash
QueryServiceStatusEx
CryptInstallOIDFunctionAddress
SetBkColor
GetCurrentObject
CreateFontA
SetColorSpace
SetPixelFormat
ImmGetGuideLineW
LocaleNameToLCID
lstrcpynW
ResumeThread
Process32FirstW
WideCharToMultiByte
GetTapeStatus
GetProcessPriorityBoost
SignalObjectAndWait
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetDynamicTimeZoneInformation
GetCommandLineA
GlobalAlloc
WriteConsoleOutputW
SetFileBandwidthReservation
MprAdminInterfaceTransportRemove
MprAdminTransportGetInfo
VARIANT_UserMarshal
VarBstrFromUI4
RpcNetworkIsProtseqValidW
NdrPointerBufferSize
RpcStringFreeW
RpcServerListen
RpcIfInqId
HashData
GetListBoxInfo
DefRawInputProc
CheckMenuItem
GetMenu
SystemParametersInfoA
GetLastActivePopup
IsCharLowerA
DrawIcon
GetWindowTextLengthW
InsertMenuW
IsWindowEnabled
UnionRect
CallNextHookEx
SetWindowRgn
PropVariantClear
PdhBrowseCountersW
Number of PE resources by type
RT_DIALOG 20
RT_STRING 10
RT_VERSION 1
Number of PE resources by language
ENGLISH US 4
ITALIAN NEUTRAL 3
SWEDISH NEUTRAL 3
CHINESE TRADITIONAL 3
SPANISH NEUTRAL 3
GERMAN NEUTRAL 3
CHINESE SIMPLIFIED 3
JAPANESE DEFAULT 3
FRENCH NEUTRAL 3
KOREAN 3
PE resources
Debug information
ExifTool file metadata
UninitializedDataSize
0

InitializedDataSize
131072

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.4.2.50

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

FileDescription
Aban Plug-in 1.4.2_05 for Netscape Navigator (DLL Helper)

ImageFileCharacteristics
No relocs, Executable, 32-bit

CharacterSet
Windows, Latin1

LinkerVersion
12.0

EntryPoint
0x171c

OriginalFileName
NPJava13.dll

MIMEType
application/x-java-applet;version=1.3.1|application/x-java-bean;version=1.3.1|application/x-java-applet;version=1.4|application/x-java-bean;version=1.4|application/x-java-applet;version=1.4.1|application/x-java-bean;version=1.4.1

LegalCopyright
Copyright (c) 2001

FileExtents
|||||

FileOpenName
Aban Applet|JavaBeans|Sola Applet|SolaBeans|Sola Applet|SolaBeans

FileVersion
1, 4, 2, 50

TimeStamp
2018:11:06 03:02:12+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
Aban Plug-in

ProductVersion
1, 4, 2, 50

SubsystemVersion
5.0

OSVersion
5.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
AbanSoft / Sun Microsystems, Inc.

CodeSize
8192

ProductName
Sola Plug-in

ProductVersionNumber
1.4.2.50

FileTypeExtension
exe

ObjectFileType
Dynamic link library

File identification
MD5 36f50e39f43185b5182fce385869a1ca
SHA1 9b88d30d61d160069c851af9fb489ac148c81832
SHA256 10a02d3fea79599ab6fa9a8518045cc41b5fb50c57c01f69242b8bdb4b79d8c8
ssdeep
3072:SKgQC/UtaWI6IqysfQOkmBR8wcbzMLBfMdv6r2y42:XgQeP+Xf4oRHcbzMLFMdA2y

authentihash 1d931e852706f853418a4dc9e7753eb2b8b08f75985326ffe63b4f9c312614e3
imphash 03d8a2083cd0ffa5f3e4d202c35eef40
File size 140.0 KB ( 143360 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Dynamic Link Library (generic) (38.4%)
Win32 Executable (generic) (26.3%)
OS/2 Executable (generic) (11.8%)
Generic Win/DOS Executable (11.6%)
DOS Executable Generic (11.6%)
Tags
peexe

VirusTotal metadata
First submission 2018-11-06 02:07:43 UTC ( 3 months, 1 week ago )
Last submission 2018-11-06 02:07:43 UTC ( 3 months, 1 week ago )
File names 09.exe
9636.exe
67.exe
47573376.exe
NPJava13.dll
Aban Plug-in
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!