× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 1fd9b7f3e752751bccb1e583b757cc2f4f194134b8b35d7fd9f5392fefbfa581
File name: 1fd9b7f3e752751bccb1e583b757cc2f4f194134b8b35d7fd9f5392fefbfa581
Detection ratio: 41 / 66
Analysis date: 2018-01-18 16:45:59 UTC ( 1 year ago ) View latest
Antivirus Result Update
Ad-Aware Worm.Generic.911137 20180118
AegisLab Troj.W32.Pakes!c 20180118
ALYac Worm.Generic.911137 20180118
Antiy-AVL Trojan/Win32.Pakes 20180118
Arcabit Worm.Generic.DDE721 20180118
Avast Win32:Malware-gen 20180118
AVG Win32:Malware-gen 20180118
Avira (no cloud) TR/Dropper.VB.boxhl 20180118
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9995 20180118
BitDefender Worm.Generic.911137 20180118
CAT-QuickHeal Trojan.Pakes 20180118
CrowdStrike Falcon (ML) malicious_confidence_100% (W) 20171016
Cybereason malicious.213144 20171103
Cylance Unsafe 20180118
DrWeb Trojan.Trick.45236 20180118
Emsisoft Worm.Generic.911137 (B) 20180118
Endgame malicious (high confidence) 20171130
ESET-NOD32 a variant of Win32/GenKryptik.BMHH 20180118
GData Worm.Generic.911137 20180118
Ikarus Trojan.Dropper 20180118
Sophos ML heuristic 20170914
Jiangmin Trojan.Pakes.bgc 20180118
K7AntiVirus EmailWorm ( 003c363a1 ) 20180118
K7GW EmailWorm ( 003c363a1 ) 20180118
Kaspersky Trojan.Win32.Pakes.awtb 20180118
Malwarebytes Trojan.TrickBot 20180118
MAX malware (ai score=98) 20180118
McAfee GenericRXDU-KM!05B67B1E9D3D 20180118
McAfee-GW-Edition BehavesLike.Win32.Generic.fc 20180118
Microsoft Trojan:Win32/Tiggre!rfn 20180118
eScan Worm.Generic.911137 20180118
nProtect Trojan/W32.Packer.360448.N 20180118
Palo Alto Networks (Known Signatures) generic.ml 20180118
SentinelOne (Static ML) static engine - malicious 20180115
Sophos AV Mal/Generic-S 20180118
Symantec Trojan.Gen.2 20180118
TrendMicro TROJ_GEN.R002C0WAH18 20180118
TrendMicro-HouseCall TROJ_GEN.R002C0WAH18 20180118
VIPRE Trojan.Win32.Pakes 20180118
Webroot W32.Trojan.Gen 20180118
ZoneAlarm by Check Point Trojan.Win32.Pakes.awtb 20180118
AhnLab-V3 20180118
Alibaba 20180118
Avast-Mobile 20180117
AVware 20180103
Bkav 20180118
ClamAV 20180118
CMC 20180116
Comodo 20180118
Cyren 20180118
eGambit 20180118
F-Prot 20180118
Fortinet 20180118
Kingsoft 20180118
NANO-Antivirus 20180118
Panda 20180118
Qihoo-360 20180118
Rising 20180118
SUPERAntiSpyware 20180118
Symantec Mobile Insight 20180118
Tencent 20180118
TheHacker 20180115
TotalDefense 20180118
Trustlook 20180118
VBA32 20180118
ViRobot 20180118
Yandex 20180112
Zillya 20180117
Zoner 20180118
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
© 2018 Ikoe the husky and Yakubi the

Product Vintro_ALS
Original name Vintro_ALS.exe
Internal name Vintro_ALS
File version 1.00
Description Freesound: collaborative database of creative-commons licensed sound for musicians and sound lovers. Have you freed your sound today?
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2018-01-16 10:55:15
Entry Point 0x000010E4
Number of sections 3
PE sections
PE imports
EVENT_SINK_QueryInterface
EVENT_SINK_Invoke
Ord(685)
Ord(594)
EVENT_SINK_AddRef
EVENT_SINK_GetIDsOfNames
Ord(583)
__vbaExceptHandler
Ord(632)
MethCallEngine
DllFunctionCall
Zombie_GetTypeInfoCount
Zombie_GetTypeInfo
Ord(100)
Ord(526)
ProcCallEngine
Ord(601)
EVENT_SINK_Release
Ord(595)
Ord(593)
Ord(582)
Ord(588)
Number of PE resources by type
RT_ICON 5
RT_STRING 1
RT_VERSION 1
RT_GROUP_ICON 1
ENTYPE_CLLS 1
Number of PE resources by language
NEUTRAL 7
RUSSIAN 1
HUNGARIAN DEFAULT 1
PE resources
ExifTool file metadata
UninitializedDataSize
0

LinkerVersion
6.0

ImageVersion
1.0

FileSubtype
0

FileVersionNumber
1.0.0.0

LanguageCode
English (U.S.)

FileFlagsMask
0x0000

FileDescription
Freesound: collaborative database of creative-commons licensed sound for musicians and sound lovers. Have you freed your sound today?

ImageFileCharacteristics
No relocs, Executable, No line numbers, No symbols, 32-bit

CharacterSet
Unicode

InitializedDataSize
258048

EntryPoint
0x10e4

OriginalFileName
Vintro_ALS.exe

MIMEType
application/octet-stream

LegalCopyright
2018 Ikoe the husky and Yakubi the

FileVersion
1.0

TimeStamp
2018:01:16 11:55:15+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
Vintro_ALS

ProductVersion
1.0

SubsystemVersion
4.0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CodeSize
98304

ProductName
Vintro_ALS

ProductVersionNumber
1.0.0.0

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 05b67b1e9d3d03401e456c1de02dc475
SHA1 d9640ad2131441bee98ff9621d3e5ea97b5a10be
SHA256 1fd9b7f3e752751bccb1e583b757cc2f4f194134b8b35d7fd9f5392fefbfa581
ssdeep
6144:tkquaiglPEmFvlyD6mQTEEaNeIw4Lc4Px6lCNG:t1uv4fFv4D6mQIFe6LcOQ

authentihash d3c7e6c60af1e3b888c3182b8bded5be9f0b5ccdd69681d09ab2075f4e4cbc72
imphash aeccf0dfcc811e343cea2f6bf3d4b6dc
File size 352.0 KB ( 360448 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable Microsoft Visual Basic 6 (88.6%)
Win32 Executable (generic) (4.8%)
OS/2 Executable (generic) (2.1%)
Generic Win/DOS Executable (2.1%)
DOS Executable Generic (2.1%)
Tags
peexe

VirusTotal metadata
First submission 2018-01-16 13:04:32 UTC ( 1 year ago )
Last submission 2018-01-18 16:45:59 UTC ( 1 year ago )
File names stsvc.exe
Vintro_ALS
LAUNCHER.EXE
Vintro_ALS.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!