× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 3f9d6c29995dbc28b91e0d30b63cfb7f7cf42d050949355b0b62293b76327568
File name: n5aaL.exe
Detection ratio: 18 / 68
Analysis date: 2018-11-05 22:42:26 UTC ( 3 months, 2 weeks ago ) View latest
Antivirus Result Update
AVG FileRepMalware 20181105
Bkav HW32.Packed. 20181102
CrowdStrike Falcon (ML) malicious_confidence_100% (D) 20181022
Cybereason malicious.07405a 20180225
Cylance Unsafe 20181105
Endgame malicious (high confidence) 20180730
Sophos ML heuristic 20180717
K7AntiVirus Trojan ( 0053b6a31 ) 20181105
K7GW Trojan ( 0053b6a31 ) 20181105
McAfee-GW-Edition BehavesLike.Win32.Emotet.ch 20181105
Microsoft Trojan:Win32/Fuerboos.C!cl 20181105
NANO-Antivirus Virus.Win32.Gen.ccmw 20181105
Qihoo-360 HEUR/QVM20.1.02D3.Malware.Gen 20181105
Rising Malware.Heuristic!ET#94% (RDM+:cmRtazqj041U5qN//VBQYr0pRmap) 20181105
SentinelOne (Static ML) static engine - malicious 20181011
Symantec ML.Attribute.HighConfidence 20181105
VIPRE LooksLike.Win32.Dridex.e (v) 20181105
Webroot W32.Trojan.Emotet 20181105
Ad-Aware 20181105
AegisLab 20181105
AhnLab-V3 20181105
Alibaba 20180921
ALYac 20181105
Antiy-AVL 20181105
Arcabit 20181105
Avast 20181105
Avast-Mobile 20181105
Avira (no cloud) 20181105
Babable 20180918
Baidu 20181105
BitDefender 20181105
CAT-QuickHeal 20181105
ClamAV 20181105
CMC 20181105
Cyren 20181105
DrWeb 20181105
eGambit 20181105
Emsisoft 20181105
ESET-NOD32 20181105
F-Prot 20181105
F-Secure 20181105
Fortinet 20181105
GData 20181105
Ikarus 20181105
Jiangmin 20181105
Kaspersky 20181105
Kingsoft 20181105
Malwarebytes 20181105
MAX 20181105
McAfee 20181105
eScan 20181105
Palo Alto Networks (Known Signatures) 20181105
Panda 20181105
Sophos AV 20181105
SUPERAntiSpyware 20181031
Symantec Mobile Insight 20181105
TACHYON 20181105
Tencent 20181105
TheHacker 20181104
TotalDefense 20181105
TrendMicro 20181105
TrendMicro-HouseCall 20181105
Trustlook 20181105
VBA32 20181105
ViRobot 20181105
Yandex 20181102
Zillya 20181105
ZoneAlarm by Check Point 20181105
Zoner 20181105
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright (c) 2001

Product Sola Plug-in
Original name NPJava13.dll
Internal name Aban Plug-in
File version 1, 4, 2, 50
Description Aban Plug-in 1.4.2_05 for Netscape Navigator (DLL Helper)
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2018-11-05 22:30:18
Entry Point 0x000015F1
Number of sections 6
PE sections
PE imports
CryptDeriveKey
SetSecurityDescriptorOwner
RegOpenKeyA
StartServiceCtrlDispatcherA
CryptDuplicateHash
QueryServiceStatusEx
CryptInstallOIDFunctionAddress
SetBkColor
GetCurrentObject
CreateFontA
SetColorSpace
SetPixelFormat
ImmGetGuideLineW
LocaleNameToLCID
lstrcpynW
ResumeThread
Process32FirstW
WideCharToMultiByte
GetTapeStatus
GetProcessPriorityBoost
SignalObjectAndWait
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCommandLineA
GetDynamicTimeZoneInformation
GlobalAlloc
WriteConsoleOutputW
SetFileBandwidthReservation
MprAdminInterfaceTransportRemove
MprAdminTransportGetInfo
VARIANT_UserMarshal
VarBstrFromUI4
RpcNetworkIsProtseqValidW
RpcServerListen
RpcStringFreeW
NdrPointerBufferSize
RpcIfInqId
HashData
GetListBoxInfo
DefRawInputProc
SetWindowRgn
GetMenu
SystemParametersInfoA
GetLastActivePopup
IsCharLowerA
DrawIcon
GetWindowTextLengthW
InsertMenuW
IsWindowEnabled
CheckMenuItem
UnionRect
CallNextHookEx
PropVariantClear
PdhBrowseCountersW
Number of PE resources by type
RT_DIALOG 20
RT_STRING 10
RT_VERSION 1
Number of PE resources by language
ENGLISH US 4
ITALIAN NEUTRAL 3
SWEDISH NEUTRAL 3
CHINESE TRADITIONAL 3
SPANISH NEUTRAL 3
GERMAN NEUTRAL 3
CHINESE SIMPLIFIED 3
JAPANESE DEFAULT 3
FRENCH NEUTRAL 3
KOREAN 3
PE resources
Debug information
ExifTool file metadata
UninitializedDataSize
0

InitializedDataSize
131072

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.4.2.50

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

FileDescription
Aban Plug-in 1.4.2_05 for Netscape Navigator (DLL Helper)

ImageFileCharacteristics
No relocs, Executable, 32-bit

CharacterSet
Windows, Latin1

LinkerVersion
12.0

EntryPoint
0x15f1

OriginalFileName
NPJava13.dll

MIMEType
application/x-java-applet;version=1.3.1|application/x-java-bean;version=1.3.1|application/x-java-applet;version=1.4|application/x-java-bean;version=1.4|application/x-java-applet;version=1.4.1|application/x-java-bean;version=1.4.1

LegalCopyright
Copyright (c) 2001

FileExtents
|||||

FileOpenName
Aban Applet|JavaBeans|Sola Applet|SolaBeans|Sola Applet|SolaBeans

FileVersion
1, 4, 2, 50

TimeStamp
2018:11:05 23:30:18+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
Aban Plug-in

ProductVersion
1, 4, 2, 50

SubsystemVersion
5.0

OSVersion
5.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
AbanSoft / Sun Microsystems, Inc.

CodeSize
8192

ProductName
Sola Plug-in

ProductVersionNumber
1.4.2.50

FileTypeExtension
exe

ObjectFileType
Dynamic link library

File identification
MD5 dcd4afa2553d52d129f0c4176a86e237
SHA1 3a7c76c07405a177cdf0f3da778b2db2fb95701c
SHA256 3f9d6c29995dbc28b91e0d30b63cfb7f7cf42d050949355b0b62293b76327568
ssdeep
3072:r3eLfjYwwwww8zZf5E7KtOwDkLE22JcU/zQjUuvbteBsSUwj:LeLfMwwwww8zZf5Efw/qnheBow

authentihash 4d902140d0f29496b94d4c8cc873b6b1273063194da95a8057f7baed7de48b86
imphash f25a5f4add8b3b7888a23ce2bd2b218a
File size 140.0 KB ( 143360 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Dynamic Link Library (generic) (38.4%)
Win32 Executable (generic) (26.3%)
OS/2 Executable (generic) (11.8%)
Generic Win/DOS Executable (11.6%)
DOS Executable Generic (11.6%)
Tags
peexe

VirusTotal metadata
First submission 2018-11-05 22:42:26 UTC ( 3 months, 2 weeks ago )
Last submission 2018-11-14 06:39:57 UTC ( 3 months, 1 week ago )
File names 6ZD2PEggD.exe
zRK7NTMgFj3.exe
n5aaL.exe
SeX6T8xktl.exe
6KhqaqkUEc.exe
S0kt3WKsNdL.exe
Exf0180SFuFd.exe
oLjiZwehV4p.exe
ZlChjVqLA.exe
dcd4afa2553d52d129f0c4176a86e237
OwOPHLdHy.exe
z9zVBUOU2.exe
0cILw5T27.exe
NPJava13.dll
iBiZ7cTAQGF.exe
Aban Plug-in
YMknO5xM.exe
SbUZtE7qgGS.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!