× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 3e43385edcd1dd32cda29bb157b21626a1efa195818d3144aa92b52bdf611d08
File name: output.114388022.txt
Detection ratio: 46 / 67
Analysis date: 2018-10-25 07:29:43 UTC ( 7 months ago ) View latest
Antivirus Result Update
Ad-Aware Gen:Trojan.Heur.FU.keX@ayMuTIf 20181024
AhnLab-V3 Trojan/Win32.Agent.C2420198 20181025
Avast Win32:Malware-gen 20181025
AVG Win32:Malware-gen 20181025
Avira (no cloud) TR/Crypt.ZPACK.Gen 20181025
BitDefender Gen:Trojan.Heur.FU.keX@ayMuTIf 20181025
Bkav W32.eHeur.Virus02 20181024
CAT-QuickHeal Trojan.GenericPMF.S2589827 20181024
CrowdStrike Falcon (ML) malicious_confidence_100% (D) 20181022
Cybereason malicious.f37e19 20180225
Cylance Unsafe 20181025
Cyren W32/Formbook.A.gen!Eldorado 20181025
DrWeb Trojan.Inject1.54688 20181025
Emsisoft Gen:Trojan.Heur.FU.keX@ayMuTIf (B) 20181025
Endgame malicious (high confidence) 20180730
ESET-NOD32 a variant of Win32/Formbook.AA 20181025
F-Prot W32/Formbook.A.gen!Eldorado 20181025
F-Secure Gen:Trojan.Heur.FU.keX@ayMuTIf 20181025
Fortinet W32/GenKryptik.AYEB!tr 20181025
GData Gen:Trojan.Heur.FU.keX@ayMuTIf 20181025
Ikarus Trojan-Spy.FormBook 20181024
Sophos ML heuristic 20180717
K7AntiVirus Trojan ( 00536d121 ) 20181025
K7GW Trojan ( 00536d121 ) 20181025
Kaspersky HEUR:Trojan.Win32.Generic 20181024
Malwarebytes Trojan.Injector 20181025
MAX malware (ai score=100) 20181025
McAfee GenericRXCD-ZZ!5A1B404F37E1 20181025
McAfee-GW-Edition BehavesLike.Win32.RAHack.cc 20181025
Microsoft TrojanSpy:Win32/Swotter.A!bit 20181025
eScan Gen:Trojan.Heur.FU.keX@ayMuTIf 20181025
NANO-Antivirus Virus.Win32.Gen.ccmw 20181025
Palo Alto Networks (Known Signatures) generic.ml 20181025
Panda Trj/CI.A 20181024
Qihoo-360 HEUR/QVM20.1.B489.Malware.Gen 20181025
Rising Stealer.Fareit!8.170 (CLOUD) 20181025
SentinelOne (Static ML) static engine - malicious 20181011
Sophos AV Troj/Formbook-A 20181025
SUPERAntiSpyware Trojan.Agent/Gen-Malagent 20181022
Symantec ML.Attribute.HighConfidence 20181025
Tencent Win32.Trojan.Inject.Auto 20181025
TrendMicro Trojan.Win32.FormBook.SM 20181025
TrendMicro-HouseCall Trojan.Win32.FormBook.SM 20181025
VBA32 BScope.TrojanPSW.Banker 20181024
Webroot W32.Trojan.Gen 20181025
ZoneAlarm by Check Point HEUR:Trojan.Win32.Generic 20181025
AegisLab 20181025
Alibaba 20180921
ALYac 20181025
Antiy-AVL 20181023
Arcabit 20181025
Avast-Mobile 20181025
Babable 20180918
Baidu 20181024
CMC 20181024
eGambit 20181025
Jiangmin 20181025
Kingsoft 20181025
Symantec Mobile Insight 20181001
TACHYON 20181025
TheHacker 20181024
TotalDefense 20181025
Trustlook 20181025
VIPRE 20181025
ViRobot 20181025
Yandex 20181024
Zillya 20181024
Zoner 20181024
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2006-09-20 06:42:31
Entry Point 0x0001B530
Number of sections 1
PE sections
Overlays
MD5 bf619eac0cdf3f68d496ea9344137e8b
File type ASCII text
Offset 171008
Size 512
Entropy 0.00
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows GUI

SubsystemVersion
5.1

MachineType
Intel 386 or later, and compatibles

TimeStamp
2006:09:20 08:42:31+02:00

FileType
Win32 EXE

PEType
PE32

CodeSize
166912

LinkerVersion
10.0

FileTypeExtension
exe

InitializedDataSize
0

ImageFileCharacteristics
Executable, 32-bit

EntryPoint
0x1b530

OSVersion
5.1

ImageVersion
0.0

UninitializedDataSize
0

File identification
MD5 5a1b404f37e1959a24a8fc184be4c121
SHA1 d9b56b095e5f5c9677f58b477d4f5f99e6370f5f
SHA256 3e43385edcd1dd32cda29bb157b21626a1efa195818d3144aa92b52bdf611d08
ssdeep
3072:cjiTcHBJ0fbCQlWJWzKCSqlhlqJOaSESlitvNZD9j/Z:L0Bx+WJWGzqpqJOa1Ki3N9

authentihash ab423ad472aef07ed40352760f98187ca5492421a7a3b85b8d6e692b2c6ad33e
File size 167.5 KB ( 171520 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID DOS Executable Generic (100.0%)
Tags
peexe overlay

VirusTotal metadata
First submission 2018-10-22 18:47:05 UTC ( 7 months ago )
Last submission 2018-11-07 04:12:11 UTC ( 6 months, 3 weeks ago )
File names output.114388022.txt
new.exe
new.exe
new.exe
5a1b404f37e1959a24a8fc184be4c121
.
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Created processes
Opened mutexes
Runtime DLLs