× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 37dcd2979c46707ec0f1f5acb6d86d51f3f977e678c947ee8b174ab2fecbf2be
File name: AutoCad-export.exe
Detection ratio: 8 / 57
Analysis date: 2015-03-24 16:31:22 UTC ( 4 years, 1 month ago ) View latest
Antivirus Result Update
Ad-Aware Trojan.GenericKDZ.27461 20150324
Avast MSIL:GenMalicious-EGP [Trj] 20150324
AVG Luhe.Fiha.A 20150324
BitDefender Trojan.GenericKDZ.27461 20150324
DrWeb Trojan.Inject1.53307 20150324
ESET-NOD32 a variant of MSIL/Injector.IOM 20150324
Jiangmin Backdoor/Androm.keo 20150323
eScan Trojan.GenericKDZ.27461 20150324
AegisLab 20150324
Yandex 20150322
AhnLab-V3 20150324
Alibaba 20150324
ALYac 20150324
Antiy-AVL 20150324
Avira (no cloud) 20150324
AVware 20150324
Baidu-International 20150324
Bkav 20150323
ByteHero 20150324
CAT-QuickHeal 20150324
ClamAV 20150324
CMC 20150324
Comodo 20150324
Cyren 20150324
Emsisoft 20150324
F-Prot 20150324
F-Secure 20150324
Fortinet 20150324
GData 20150324
Ikarus 20150324
K7AntiVirus 20150324
K7GW 20150324
Kaspersky 20150324
Kingsoft 20150324
Malwarebytes 20150324
McAfee 20150324
McAfee-GW-Edition 20150324
Microsoft 20150324
NANO-Antivirus 20150324
Norman 20150324
nProtect 20150324
Panda 20150324
Qihoo-360 20150324
Rising 20150324
Sophos AV 20150324
SUPERAntiSpyware 20150323
Symantec 20150324
Tencent 20150324
TheHacker 20150324
TotalDefense 20150324
TrendMicro 20150324
TrendMicro-HouseCall 20150324
VBA32 20150324
VIPRE 20150324
ViRobot 20150324
Zillya 20150324
Zoner 20150323
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2015

Publisher AutoCad 2014
Product Autocad export
Original name Autocad export.exe
Internal name Autocad export.exe
File version 1.7.0.0
Description Autocad export
Comments Export made by AutoCad 2014
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2015-03-11 18:16:44
Entry Point 0x0009370E
Number of sections 3
.NET details
Module Version ID d753e8a4-a6ad-4974-be77-18ad10816834
TypeLib ID 6c70db97-216b-4298-a16b-1b551f93ba5b
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_ICON 9
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 12
PE resources
ExifTool file metadata
LegalTrademarks
AutoCad 2014

SubsystemVersion
4.0

Comments
Export made by AutoCad 2014

LinkerVersion
11.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.7.0.0

LanguageCode
Neutral

FileFlagsMask
0x003f

FileDescription
Autocad export

CharacterSet
Unicode

InitializedDataSize
182272

EntryPoint
0x9370e

OriginalFileName
Autocad export.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright 2015

FileVersion
1.7.0.0

TimeStamp
2015:03:11 19:16:44+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
Autocad export.exe

ProductVersion
1.7.0.0

UninitializedDataSize
0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
AutoCad 2014

CodeSize
595968

ProductName
Autocad export

ProductVersionNumber
1.7.0.0

FileTypeExtension
exe

ObjectFileType
Executable application

AssemblyVersion
1.0.0.0

File identification
MD5 d41379b73f290259366c17719ea4c5d5
SHA1 76d4d542f70341061b0c5b4dca09d9da4f9d8d80
SHA256 37dcd2979c46707ec0f1f5acb6d86d51f3f977e678c947ee8b174ab2fecbf2be
ssdeep
12288:/1ZD6nrW12ClAJcWA9SOoxXeWbXYrQQrU8ejGsWrcUd1o3OGnm:/X2nNJc/9KxXBXY0QoRGu3Bnm

authentihash f324507d1227fbe5e8b9ef9011a11d37d02103e0a9749a7ec7837329e1ac9942
imphash f34d5f2d4577ed6d9ceec516c1f5a744
File size 760.5 KB ( 778752 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Win32 Dynamic Link Library (generic) (43.5%)
Win32 Executable (generic) (29.8%)
Generic Win/DOS Executable (13.2%)
DOS Executable Generic (13.2%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
Tags
peexe assembly

VirusTotal metadata
First submission 2015-03-24 16:31:22 UTC ( 4 years, 1 month ago )
Last submission 2015-03-24 21:58:19 UTC ( 4 years, 1 month ago )
File names filename
AutoCad-export.exe
Autocad export.exe
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!