× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 1ddf2de1bb8d289b6b77843bc2b9a685d31d0f17371691e3f4b81faa383c7769
File name: VPN-Pro.signed_damaged.exe
Detection ratio: 7 / 47
Analysis date: 2013-10-25 05:18:23 UTC ( 3 years, 8 months ago ) View latest
Antivirus Result Update
Yandex Trojan.Blocker!QGeiRRIY22g 20131024
AntiVir TR/Spy.Gen 20131025
Avast MSIL:BackDoor-C [Trj] 20131025
AVG Generic33.BIGC 20131024
DrWeb Trojan.DownLoader10.15702 20131025
Jiangmin Trojan/Blocker.hbg 20131025
Rising Backdoor.Shadow!55A1 20131025
AhnLab-V3 20131024
Antiy-AVL 20131025
Baidu-International 20131024
BitDefender 20090218
Bkav 20131024
ByteHero 20131024
CAT-QuickHeal 20131023
ClamAV 20131025
Commtouch 20131025
Comodo 20131025
Emsisoft 20131025
ESET-NOD32 20131024
F-Prot 20131025
F-Secure 20131025
Fortinet 20131025
GData 20131025
Ikarus 20131025
K7AntiVirus 20131024
K7GW 20131024
Kaspersky 20131025
Kingsoft 20130829
Malwarebytes 20131025
McAfee 20131025
McAfee-GW-Edition 20131025
Microsoft 20131025
eScan 20131025
NANO-Antivirus 20131025
Norman 20131024
nProtect 20131025
Panda 20131024
Sophos 20131025
SUPERAntiSpyware 20131025
Symantec 20131025
TheHacker 20131024
TotalDefense 20131024
TrendMicro 20131025
TrendMicro-HouseCall 20131025
VBA32 20131024
VIPRE 20131025
ViRobot 20131025
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file.
FileVersionInfo properties
Copyright
Copyright © 2013

Product VPN-Pro
Original name VPN-Pro.exe
Internal name VPN-Pro.exe
File version 1.0.0.0
Description VPN-Pro
Signature verification Not a cryptographic message or the cryptographic message is not formatted correctly.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2013-06-15 21:41:31
Entry Point 0x001E849E
Number of sections 4
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_ICON 1
RT_GROUP_ICON 1
RT_VERSION 1
RT_MANIFEST 1
Number of PE resources by language
NEUTRAL 4
PE resources
File identification
MD5 f98d5ec3c633703484c5a48adbe3756d
SHA1 2e437581198b063c8ac3c11873bae3fe4d20c583
SHA256 1ddf2de1bb8d289b6b77843bc2b9a685d31d0f17371691e3f4b81faa383c7769
ssdeep
49152:JaaQPYYOQrEtAVy5/r56qfxpAFhrlfteP1BD4EaaQP:AaQPYYd8EOAqfxpehrdtePL4naQP

File size 2.0 MB ( 2066792 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Win32 Executable MS Visual C++ (generic) (35.0%)
Win64 Executable (generic) (31.0%)
Windows Screen Saver (14.7%)
Win32 Dynamic Link Library (generic) (7.3%)
Win32 Executable (generic) (5.0%)
Tags
peexe assembly

VirusTotal metadata
First submission 2013-10-25 05:18:23 UTC ( 3 years, 8 months ago )
Last submission 2013-10-25 05:18:23 UTC ( 3 years, 8 months ago )
File names VPN-Pro.exe
VPN-Pro.signed_damaged.exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!