× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 1bb9255bcbb36b2e5f23a1c71699e10e65fcb7231eb340faaeef975a51e6aa39
File name: informacion_13751.exe
Detection ratio: 3 / 56
Analysis date: 2016-04-07 21:03:26 UTC ( 3 years ago ) View latest
Antivirus Result Update
Baidu Win32.Trojan.WisdomEyes.151026.9950.9995 20160407
McAfee-GW-Edition BehavesLike.Win32.FakeAlert.hh 20160407
Qihoo-360 QVM07.1.Malware.Gen 20160407
Ad-Aware 20160407
AegisLab 20160407
AhnLab-V3 20160407
Alibaba 20160407
ALYac 20160407
Antiy-AVL 20160407
Arcabit 20160407
Avast 20160407
AVG 20160407
Avira (no cloud) 20160407
AVware 20160407
Baidu-International 20160407
BitDefender 20160407
Bkav 20160406
CAT-QuickHeal 20160407
ClamAV 20160405
CMC 20160407
Comodo 20160407
Cyren 20160407
DrWeb 20160407
Emsisoft 20160407
ESET-NOD32 20160407
F-Prot 20160407
F-Secure 20160407
Fortinet 20160404
GData 20160407
Ikarus 20160407
Jiangmin 20160407
K7AntiVirus 20160407
K7GW 20160404
Kaspersky 20160407
Kingsoft 20160407
Malwarebytes 20160407
McAfee 20160407
Microsoft 20160407
eScan 20160407
NANO-Antivirus 20160407
nProtect 20160407
Panda 20160407
Rising 20160407
Sophos AV 20160407
SUPERAntiSpyware 20160407
Symantec 20160407
Tencent 20160407
TheHacker 20160407
TrendMicro 20160407
TrendMicro-HouseCall 20160407
VBA32 20160407
VIPRE 20160407
ViRobot 20160407
Yandex 20160406
Zillya 20160407
Zoner 20160407
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2016-04-20 08:03:34
Entry Point 0x00025996
Number of sections 4
PE sections
PE imports
PathIsUNCW
PathAppendW
mixerGetID
mciGetErrorStringA
timeSetEvent
waveOutWrite
Number of PE resources by type
RT_ICON 6
RT_GROUP_ICON 2
RT_DIALOG 1
RT_VERSION 1
Number of PE resources by language
ENGLISH US 5
ENGLISH UK 5
PE resources
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
6.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
0.122.18.29

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
1949696

EntryPoint
0x25996

OriginalFileName
Sinned.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright 2012

FileVersion
23, 87, 242, 55

TimeStamp
2016:04:20 09:03:34+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
Segregate

ProductVersion
94, 23, 176, 198

FileDescription
Wealthiest

OSVersion
4.0

FileOS
Windows NT 32-bit

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Kyocera Wireless Corp.

CodeSize
151552

ProductName
Kyocera Wireless Corp. Wilder

ProductVersionNumber
0.93.61.83

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 aa05c1e880c42c60fe122f568a8f9b6b
SHA1 81a9df982f42f68e304952f6c0fda7b4bbf1f1fd
SHA256 1bb9255bcbb36b2e5f23a1c71699e10e65fcb7231eb340faaeef975a51e6aa39
ssdeep
12288:cH57o6zReNDv/zZ9WyZL0UGo4C9UUdTJZHQzhxQU85j:c7oMUXz7Wq0UGP4DZwy5j

authentihash 8e828f697b578c36f845c16fd72f97dfa58f2da76525ca30a7f8bf9e2e0ce5c1
imphash db5351cea90f42baf54fa06f28e47ac6
File size 560.0 KB ( 573440 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable (generic) (52.9%)
Generic Win/DOS Executable (23.5%)
DOS Executable Generic (23.5%)
Tags
peexe

VirusTotal metadata
First submission 2016-04-07 21:03:26 UTC ( 3 years ago )
Last submission 2016-04-08 13:14:34 UTC ( 3 years ago )
File names informacion_13751.exe
TURKTELEKOM_FATURA.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!