× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 1ab56bd3364eb376d91db74f66a0d48ad05a635d195dcadfaabddbec88b803e6
File name: pwtlci7WR5a.exe
Detection ratio: 24 / 67
Analysis date: 2018-06-01 00:12:13 UTC ( 8 months, 3 weeks ago ) View latest
Antivirus Result Update
AegisLab Ml.Attribute.Gen!c 20180531
Avast Win32:Trojan-gen 20180601
AVG Win32:Trojan-gen 20180601
BitDefender Trojan.GenericKD.30906023 20180601
CrowdStrike Falcon (ML) malicious_confidence_80% (W) 20180530
Cybereason malicious.bf0dd4 20180225
Cylance Unsafe 20180601
Cyren W32/Emotet.DBSW-7522 20180601
Emsisoft Trojan.GenericKD.30906023 (B) 20180601
Endgame malicious (high confidence) 20180507
ESET-NOD32 a variant of Win32/Kryptik.GHHC 20180601
Sophos ML heuristic 20180503
K7GW Hacktool ( 700007861 ) 20180531
Kaspersky UDS:DangerousObject.Multi.Generic 20180601
Malwarebytes Trojan.Emotet 20180601
MAX malware (ai score=94) 20180601
McAfee Emotet-FDM!BDFC39FBF0DD 20180601
McAfee-GW-Edition BehavesLike.Win32.Emotet.dt 20180531
Palo Alto Networks (Known Signatures) generic.ml 20180601
Qihoo-360 HEUR/QVM20.1.8706.Malware.Gen 20180601
SentinelOne (Static ML) static engine - malicious 20180225
Symantec ML.Attribute.HighConfidence 20180601
Webroot W32.Trojan.Emotet 20180601
ZoneAlarm by Check Point UDS:DangerousObject.Multi.Generic 20180601
Ad-Aware 20180601
AhnLab-V3 20180531
Alibaba 20180530
ALYac 20180601
Antiy-AVL 20180601
Arcabit 20180601
Avast-Mobile 20180531
Avira (no cloud) 20180531
AVware 20180601
Babable 20180406
Baidu 20180531
Bkav 20180531
CAT-QuickHeal 20180531
ClamAV 20180531
CMC 20180529
Comodo 20180531
DrWeb 20180601
eGambit 20180601
F-Prot 20180531
F-Secure 20180531
Fortinet 20180531
GData 20180531
Jiangmin 20180601
K7AntiVirus 20180530
Kingsoft 20180601
Microsoft 20180531
eScan 20180531
NANO-Antivirus 20180531
nProtect 20180601
Panda 20180531
Rising 20180601
Sophos AV 20180601
SUPERAntiSpyware 20180531
Symantec Mobile Insight 20180601
Tencent 20180601
TheHacker 20180531
TotalDefense 20180531
TrendMicro 20180601
TrendMicro-HouseCall 20180601
Trustlook 20180601
VBA32 20180531
VIPRE 20180601
ViRobot 20180531
Yandex 20180529
Zillya 20180531
Zoner 20180531
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright 2016 The Apache Software Foundation.

Product Apache HTTP Server
Original name htdigest.exe
Internal name htdigest.exe
File version 2.4.23
Description Apache htdigest command line utility
Comments Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0 Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2016-07-09 09:09:36
Entry Point 0x0000100F
Number of sections 8
PE sections
PE imports
ReleaseMutex
CopyFileA
HeapAlloc
FlsGetValue
FindFirstFileNameTransactedW
FlsFree
VarUdateFromDate
RpcStringFreeA
SetupDiInstallClassW
CM_Free_Resource_Conflict_Handle
GetGUIThreadInfo
GetUpdatedClipboardFormats
GetMenuBarInfo
Ord(30)
Number of PE resources by type
RT_MANIFEST 1
RT_VERSION 1
Number of PE resources by language
ENGLISH US 2
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
5.0

Comments
Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at

LinkerVersion
13.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
2.4.23.0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

FileDescription
Apache htdigest command line utility

CharacterSet
Unicode

InitializedDataSize
110592

EntryPoint
0x100f

OriginalFileName
htdigest.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright 2016 The Apache Software Foundation.

FileVersion
2.4.23

TimeStamp
2016:07:09 10:09:36+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
htdigest.exe

ProductVersion
2.4.23

UninitializedDataSize
0

OSVersion
5.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Apache Software Foundation

CodeSize
0

ProductName
Apache HTTP Server

ProductVersionNumber
2.4.23.0

FileTypeExtension
exe

ObjectFileType
Executable application

Compressed bundles
File identification
MD5 bdfc39fbf0dd48cb1c2475d0eee51877
SHA1 95d65cc19439cca2c09e6a25fe3b2c6384c962e7
SHA256 1ab56bd3364eb376d91db74f66a0d48ad05a635d195dcadfaabddbec88b803e6
ssdeep
1536:g1tWNxOu7Rev8JZtBT4S13Ww3IB4rPlSbIG7872GlMVxU8C1jti2o0dpq8UV:g1MNImIvmZz4SYrBe4tFqgXC1RiYddk

authentihash 39740100cd7ddacdec1c7b7a509877285d228a36dd51fbc4c23c41239510059c
imphash 2db420362615b24cdee311a0498f9122
File size 272.0 KB ( 278528 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID OS/2 Executable (generic) (33.6%)
Generic Win/DOS Executable (33.1%)
DOS Executable Generic (33.1%)
Tags
peexe

VirusTotal metadata
First submission 2018-05-31 21:16:45 UTC ( 8 months, 3 weeks ago )
Last submission 2018-06-01 23:58:41 UTC ( 8 months, 2 weeks ago )
File names 7331.exe
75518.exe
06005.exe
7789.exe
48680.exe
0520.exe
17723.exe
htdigest.exe
0254.exe
6758.exe
pwtlci7WR5a.exe
5470.exe
9b0c8891680f6ca7f0806b33bb6d3da8c6c94b52
25535.exe
4735.exe
8399.exe
2996.exe
96386.exe
09245.exe
0573.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!