× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 18381647d0103885b9c2c963457eb80d28fbd06673e2e3efc0029f8493512c2f
File name: setiva.exe
Detection ratio: 23 / 70
Analysis date: 2019-01-21 15:18:25 UTC ( 3 months, 4 weeks ago ) View latest
Antivirus Result Update
Acronis suspicious 20190119
CrowdStrike Falcon (ML) malicious_confidence_60% (D) 20181023
Cybereason malicious.d5f5de 20190109
Cylance Unsafe 20190121
Cyren W32/MSIL_Agent.CU.gen!Eldorado 20190121
Endgame malicious (high confidence) 20181108
ESET-NOD32 a variant of MSIL/Kryptik.QPE 20190121
F-Prot W32/MSIL_Agent.CU.gen!Eldorado 20190121
Fortinet MSIL/Kryptik.QOG!tr 20190121
Sophos ML heuristic 20181128
Kaspersky HEUR:Trojan.Win32.Generic 20190121
Malwarebytes Trojan.PasswordStealer.MSIL 20190121
McAfee Packed-FPW!BC8A1A5E41D4 20190121
McAfee-GW-Edition BehavesLike.Win32.Generic.fc 20190121
Microsoft Trojan:Win32/Fuery.B!cl 20190121
Palo Alto Networks (Known Signatures) generic.ml 20190121
Panda Trj/Genetic.gen 20190121
Qihoo-360 HEUR/QVM03.0.B29F.Malware.Gen 20190121
Rising Trojan.NanoBot!8.80F2 (TFE:D:htIAVJhmurJ) 20190121
SentinelOne (Static ML) static engine - malicious 20190118
Tencent Win32.Trojan.Generic.Piac 20190121
Trapmine malicious.high.ml.score 20190103
ZoneAlarm by Check Point HEUR:Trojan.Win32.Generic 20190121
Ad-Aware 20190121
AegisLab 20190121
AhnLab-V3 20190121
Alibaba 20180921
ALYac 20190121
Antiy-AVL 20190121
Arcabit 20190121
Avast 20190121
Avast-Mobile 20190121
AVG 20190121
Avira (no cloud) 20190121
Babable 20180918
Baidu 20190121
BitDefender 20190121
Bkav 20190121
CAT-QuickHeal 20190121
ClamAV 20190121
CMC 20190121
Comodo 20190121
DrWeb 20190121
eGambit 20190121
Emsisoft 20190121
F-Secure 20190121
GData 20190121
Ikarus 20190121
Jiangmin 20190121
K7AntiVirus 20190121
K7GW 20190121
Kingsoft 20190121
MAX 20190121
eScan 20190121
NANO-Antivirus 20190121
Sophos AV 20190121
SUPERAntiSpyware 20190116
Symantec 20190121
TACHYON 20190121
TheHacker 20190118
TotalDefense 20190121
TrendMicro 20190121
TrendMicro-HouseCall 20190121
Trustlook 20190121
VBA32 20190121
ViRobot 20190121
Webroot 20190121
Yandex 20190120
Zillya 20190118
Zoner 20190121
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2018 Pilgrim's Pride Corporation

Product Application Server Command Line Admin Too
Original name setiva.exe
Internal name setiva.exe
File version 16.1.9.4
Description Application Server Command Line Admin Too
Comments enanisedimiyuyij
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 1982-05-18 15:32:56
Entry Point 0x0005CF2E
Number of sections 3
.NET details
Module Version ID 1d25b9a3-86c2-41a4-b355-db65dfee55fc
TypeLib ID 4e2aa32a-1da3-497e-ba80-c3a11130ec56
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_MANIFEST 1
RT_VERSION 1
Number of PE resources by language
NEUTRAL 2
PE resources
ExifTool file metadata
SubsystemVersion
4.0

Comments
enanisedimiyuyij

LinkerVersion
8.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
16.1.9.4

LanguageCode
Neutral

FileFlagsMask
0x003f

FileDescription
Application Server Command Line Admin Too

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Unicode

InitializedDataSize
2560

EntryPoint
0x5cf2e

OriginalFileName
setiva.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright 2018 Pilgrim's Pride Corporation

FileVersion
16.1.9.4

TimeStamp
1982:05:18 17:32:56+02:00

FileType
Win32 EXE

PEType
PE32

InternalName
setiva.exe

ProductVersion
16.1.9.4

UninitializedDataSize
0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Pilgrim's Pride Corporation

CodeSize
372736

ProductName
Application Server Command Line Admin Too

ProductVersionNumber
16.1.9.4

FileTypeExtension
exe

ObjectFileType
Executable application

AssemblyVersion
0.0.0.0

File identification
MD5 bc8a1a5e41d438aa77d24a6735b8f01c
SHA1 129a545d5f5de2d688458a6c45411aa3489ed65f
SHA256 18381647d0103885b9c2c963457eb80d28fbd06673e2e3efc0029f8493512c2f
ssdeep
6144:OLBn+Kvt/HmSokpp45cp+LX7upz92yjRq+hShLpwAElA79m22:xaBmSZ4AWmzEw+pwAEKm

authentihash cec898bc181f3dd8fc1123d9c41d8324e75e193d5c2ca5e1c4b0c728d0b00b95
imphash f34d5f2d4577ed6d9ceec516c1f5a744
File size 367.0 KB ( 375808 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Win64 Executable (generic) (61.7%)
Win32 Dynamic Link Library (generic) (14.7%)
Win32 Executable (generic) (10.0%)
OS/2 Executable (generic) (4.5%)
Generic Win/DOS Executable (4.4%)
Tags
peexe assembly

VirusTotal metadata
First submission 2019-01-21 15:18:25 UTC ( 3 months, 4 weeks ago )
Last submission 2019-01-23 12:00:16 UTC ( 3 months, 3 weeks ago )
File names output.114998682.txt
setiva.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!