× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 43e5b4d8f0e6ce3e201c1e829556ebd9f1a67806296180ed29dcdbf387afd19d
File name: output.114230952.txt
Detection ratio: 28 / 69
Analysis date: 2018-10-03 03:25:02 UTC ( 7 months, 2 weeks ago ) View latest
Antivirus Result Update
AhnLab-V3 Trojan/Win32.MSIL.R220700 20181002
Avast FileRepMalware 20181003
AVG FileRepMalware 20181003
CrowdStrike Falcon (ML) malicious_confidence_60% (D) 20180723
Cylance Unsafe 20181003
Cyren W32/Trojan.BEJ.gen!Eldorado 20181003
Emsisoft Trojan.Crypt (A) 20181003
ESET-NOD32 a variant of MSIL/Kryptik.PQP 20181003
F-Prot W32/Trojan.BEJ.gen!Eldorado 20181003
Fortinet W32/Generic.PQP!tr 20181003
Ikarus Win32.Outbreak 20181002
Sophos ML heuristic 20180717
Kaspersky HEUR:Trojan.Win32.Generic 20181003
Malwarebytes Spyware.PasswordStealer 20181003
MAX malware (ai score=100) 20181003
McAfee RDN/Generic.dx 20181003
McAfee-GW-Edition Artemis!Trojan 20181003
Microsoft Trojan:Win32/Fuerboos.C!cl 20181003
Palo Alto Networks (Known Signatures) generic.ml 20181003
Qihoo-360 HEUR/QVM03.0.42A3.Malware.Gen 20181003
Rising Trojan.Kryptik!8.8 (CLOUD) 20181003
SentinelOne (Static ML) static engine - malicious 20180926
Sophos AV Mal/Generic-S 20181003
Symantec ML.Attribute.HighConfidence 20181003
Tencent Win32.Trojan.Generic.Lohs 20181003
TrendMicro TROJ_FRS.VSN02J18 20181003
TrendMicro-HouseCall TROJ_FRS.VSN02J18 20181003
ZoneAlarm by Check Point HEUR:Trojan.Win32.Generic 20180925
Ad-Aware 20181003
AegisLab 20181004
Alibaba 20180921
ALYac 20181003
Antiy-AVL 20181003
Arcabit 20181003
Avast-Mobile 20181002
Avira (no cloud) 20181003
AVware 20180925
Babable 20180918
Baidu 20180930
BitDefender 20181003
Bkav 20181002
CAT-QuickHeal 20181001
ClamAV 20181002
CMC 20181002
Comodo 20181003
Cybereason 20180225
DrWeb 20181003
eGambit 20181003
Endgame 20180730
F-Secure 20181003
GData 20181003
Jiangmin 20181003
K7AntiVirus 20181002
K7GW 20181001
Kingsoft 20181003
eScan 20181003
NANO-Antivirus 20181003
Panda 20181002
SUPERAntiSpyware 20180907
Symantec Mobile Insight 20181001
TACHYON 20181003
TheHacker 20181001
TotalDefense 20181002
Trustlook 20181003
VBA32 20181002
VIPRE 20181003
ViRobot 20181002
Webroot 20181003
Yandex 20180927
Zillya 20181002
Zoner 20181002
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2008 - 2018. All rights reserved.

Product Same as in FIleDescription
Original name computer.exe
Internal name computer.exe
File version 7.7.18.4
Description How is seen in task manager
Comments Random comments
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 1995-06-01 08:58:35
Entry Point 0x000A0E4E
Number of sections 3
.NET details
Module Version ID 4f0cbd5c-08f6-454c-97d5-d9eaf68c2a8a
TypeLib ID e5a34c0a-711f-4ffa-b970-e55b6c9430a9
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_MANIFEST 1
RT_VERSION 1
Number of PE resources by language
NEUTRAL 2
PE resources
ExifTool file metadata
SubsystemVersion
4.0

Comments
Random comments

LinkerVersion
8.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
7.7.18.4

LanguageCode
Neutral

FileFlagsMask
0x003f

FileDescription
How is seen in task manager

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Unicode

InitializedDataSize
2560

EntryPoint
0xa0e4e

OriginalFileName
computer.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright 2008 - 2018. All rights reserved.

FileVersion
7.7.18.4

TimeStamp
1995:06:01 10:58:35+02:00

FileType
Win32 EXE

PEType
PE32

InternalName
computer.exe

ProductVersion
7.7.18.4

UninitializedDataSize
0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Company name

CodeSize
651264

ProductName
Same as in FIleDescription

ProductVersionNumber
7.7.18.4

FileTypeExtension
exe

ObjectFileType
Executable application

AssemblyVersion
0.0.0.0

File identification
MD5 a8a83c5be8fac24c516269133b54356b
SHA1 93f4b8f93bf8e1e4fa25e28c9f26e5043f915486
SHA256 43e5b4d8f0e6ce3e201c1e829556ebd9f1a67806296180ed29dcdbf387afd19d
ssdeep
6144:HrHuFvSdcuo0844uQukOvisycINagTvqC5bC9LdN6lpiKYeWPo+X84xLy56:qFvvuo5DSi93bqC2ilpHp4b

authentihash 39763883c672cf7baa0170292f01e7eb68db5680337107278f35bc3f6da3533d
imphash f34d5f2d4577ed6d9ceec516c1f5a744
File size 639.0 KB ( 654336 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic CIL Executable (.NET, Mono, etc.) (81.0%)
Win32 Dynamic Link Library (generic) (7.2%)
Win32 Executable (generic) (4.9%)
OS/2 Executable (generic) (2.2%)
Generic Win/DOS Executable (2.2%)
Tags
peexe assembly

VirusTotal metadata
First submission 2018-10-02 14:39:32 UTC ( 7 months, 3 weeks ago )
Last submission 2018-10-02 18:04:04 UTC ( 7 months, 2 weeks ago )
File names computer.exe
output.114230952.txt
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!