× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 405b6e888938e80900eba31c2eee96b14c82c509852f039350b66642be130c64
File name: 14207055
Detection ratio: 23 / 68
Analysis date: 2018-09-13 14:14:11 UTC ( 8 months, 2 weeks ago )
Antivirus Result Update
Ad-Aware Gen:Variant.Razy.388547 20180913
ALYac Gen:Variant.Razy.388547 20180913
Arcabit Trojan.Razy.D5EDC3 20180913
Avira (no cloud) HEUR/AGEN.1001615 20180913
BitDefender Gen:Variant.Razy.388547 20180913
CrowdStrike Falcon (ML) malicious_confidence_100% (D) 20180723
Cybereason malicious.044d5c 20180225
Cylance Unsafe 20180913
Cyren W32/Fareit.GK.gen!Eldorado 20180913
Emsisoft Gen:Variant.Razy.388547 (B) 20180913
Endgame malicious (moderate confidence) 20180730
ESET-NOD32 a variant of MSIL/Kryptik.PNH 20180913
F-Prot W32/Fareit.GK.gen!Eldorado 20180913
Fortinet MSIL/Kryptik.PMV!tr 20180913
GData Gen:Variant.Razy.388547 20180913
K7AntiVirus Trojan ( 0053c4a21 ) 20180913
Malwarebytes Trojan.Crypt.MSIL.Generic 20180913
MAX malware (ai score=80) 20180913
McAfee GenericRXGK-XZ!AD8DD9E33621 20180913
Microsoft Program:Win32/Unwaders.C!ml 20180913
eScan Gen:Variant.Razy.388547 20180913
Panda Trj/Genetic.gen 20180913
Qihoo-360 HEUR/QVM03.0.D6F9.Malware.Gen 20180913
AegisLab 20180913
AhnLab-V3 20180913
Alibaba 20180713
Antiy-AVL 20180913
Avast 20180913
Avast-Mobile 20180913
AVG 20180913
AVware 20180913
Babable 20180907
Baidu 20180912
Bkav 20180912
CAT-QuickHeal 20180912
ClamAV 20180913
CMC 20180913
Comodo 20180913
DrWeb 20180913
eGambit 20180913
F-Secure 20180913
Ikarus 20180913
Sophos ML 20180717
Jiangmin 20180912
K7GW 20180913
Kaspersky 20180913
Kingsoft 20180913
McAfee-GW-Edition 20180913
NANO-Antivirus 20180913
Palo Alto Networks (Known Signatures) 20180913
Rising 20180913
SentinelOne (Static ML) 20180830
Sophos AV 20180913
SUPERAntiSpyware 20180907
Symantec 20180912
Symantec Mobile Insight 20180911
TACHYON 20180913
Tencent 20180913
TheHacker 20180913
TotalDefense 20180913
TrendMicro 20180913
TrendMicro-HouseCall 20180913
Trustlook 20180913
VBA32 20180913
VIPRE 20180913
ViRobot 20180913
Webroot 20180913
Yandex 20180912
Zillya 20180912
ZoneAlarm by Check Point 20180913
Zoner 20180913
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright (c) 2018, Spotify Ltd

Product Spotify
Description Spotify
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2018-09-12 15:18:37
Entry Point 0x0008EA0E
Number of sections 3
.NET details
Module Version ID 7f61c253-5099-47d9-9d7f-7d57633b1d1b
PE sections
Overlays
MD5 152e82e2cc5c6e9d0d7e85237c021b13
File type MMDF mailbox
Offset 747008
Size 102400
Entropy 0.00
PE imports
_CorExeMain
Number of PE resources by type
RT_ICON 10
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 12
ENGLISH US 1
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
4.0

InitializedDataSize
169984

ImageVersion
0.0

ProductName
Spotify

FileVersionNumber
0.0.0.0

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x0000

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Unicode

LinkerVersion
11.0

FileTypeExtension
exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

TimeStamp
2018:09:12 16:18:37+01:00

FileType
Win32 EXE

PEType
PE32

FileDescription
Spotify

OSVersion
4.0

FileOS
Unknown (0)

LegalCopyright
Copyright (c) 2018, Spotify Ltd

MachineType
Intel 386 or later, and compatibles

CodeSize
576512

FileSubtype
0

ProductVersionNumber
0.0.0.0

EntryPoint
0x8ea0e

ObjectFileType
Executable application

File identification
MD5 ad8dd9e336214ccf223cf7fcb7799609
SHA1 b865e13044d5c4508153e90919f293c0e6aa8aae
SHA256 405b6e888938e80900eba31c2eee96b14c82c509852f039350b66642be130c64
ssdeep
12288:qhl/c4hVCvAl571PsotvaS9dGOiASMfKdc:qhlJVSAf71PB/HGOivMfQc

authentihash 1d84f258d153129e58389a9fb9b7f0e4219e8e6bbb3e40a8f8c2f3732c0bf6eb
imphash f34d5f2d4577ed6d9ceec516c1f5a744
File size 829.5 KB ( 849408 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic CIL Executable (.NET, Mono, etc.) (81.0%)
Win32 Dynamic Link Library (generic) (7.2%)
Win32 Executable (generic) (4.9%)
OS/2 Executable (generic) (2.2%)
Generic Win/DOS Executable (2.2%)
Tags
peexe assembly overlay

VirusTotal metadata
First submission 2018-09-13 14:14:11 UTC ( 8 months, 2 weeks ago )
Last submission 2018-09-13 14:14:11 UTC ( 8 months, 2 weeks ago )
File names 14207055
ss.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!