× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 5ea2ab607d4fd6a8282b1ec5c8912131511222488cad5a0af8d90c247b83e9b7
File name: 14207054
Detection ratio: 23 / 68
Analysis date: 2018-09-13 14:16:30 UTC ( 8 months, 2 weeks ago ) View latest
Antivirus Result Update
Ad-Aware Gen:Variant.Razy.388547 20180913
ALYac Gen:Variant.Razy.388547 20180913
Arcabit Trojan.Razy.D5EDC3 20180913
Avira (no cloud) HEUR/AGEN.1001615 20180913
BitDefender Gen:Variant.Razy.388547 20180913
CrowdStrike Falcon (ML) malicious_confidence_100% (D) 20180723
Cylance Unsafe 20180913
Cyren W32/Fareit.GK.gen!Eldorado 20180913
Emsisoft Gen:Variant.Razy.388547 (B) 20180913
Endgame malicious (high confidence) 20180730
ESET-NOD32 a variant of MSIL/Kryptik.PNH 20180913
F-Prot W32/Fareit.GK.gen!Eldorado 20180913
F-Secure Gen:Variant.Razy.388547 20180913
Fortinet MSIL/Kryptik.PMV!tr 20180913
GData Gen:Variant.Razy.388547 20180913
K7AntiVirus Trojan ( 0053c4a21 ) 20180913
Malwarebytes Trojan.Crypt.MSIL.Generic 20180913
MAX malware (ai score=85) 20180913
McAfee GenericRXGK-XZ!A5E833DDEF0D 20180913
eScan Gen:Variant.Razy.388547 20180913
Panda Trj/Genetic.gen 20180913
Qihoo-360 HEUR/QVM03.0.D71F.Malware.Gen 20180913
SentinelOne (Static ML) static engine - malicious 20180830
AegisLab 20180913
AhnLab-V3 20180913
Alibaba 20180713
Antiy-AVL 20180913
Avast 20180913
Avast-Mobile 20180913
AVG 20180913
AVware 20180913
Babable 20180907
Baidu 20180912
Bkav 20180912
CAT-QuickHeal 20180912
ClamAV 20180913
CMC 20180913
Comodo 20180913
Cybereason 20180225
DrWeb 20180913
eGambit 20180913
Ikarus 20180913
Sophos ML 20180717
Jiangmin 20180912
K7GW 20180913
Kaspersky 20180913
Kingsoft 20180913
McAfee-GW-Edition 20180913
Microsoft 20180913
NANO-Antivirus 20180913
Palo Alto Networks (Known Signatures) 20180913
Rising 20180913
Sophos AV 20180913
SUPERAntiSpyware 20180907
Symantec 20180912
Symantec Mobile Insight 20180911
TACHYON 20180913
Tencent 20180913
TheHacker 20180913
TotalDefense 20180913
TrendMicro 20180913
TrendMicro-HouseCall 20180913
Trustlook 20180913
VBA32 20180913
VIPRE 20180913
ViRobot 20180913
Webroot 20180913
Yandex 20180912
Zillya 20180912
ZoneAlarm by Check Point 20180913
Zoner 20180913
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright (c) 2018, Spotify Ltd

Product Spotify
Description Spotify
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2018-09-12 15:22:36
Entry Point 0x0008EA8E
Number of sections 3
.NET details
Module Version ID e299a6d1-cdc0-44d2-b4f0-b2f9437d1cb9
PE sections
Overlays
MD5 152e82e2cc5c6e9d0d7e85237c021b13
File type MMDF mailbox
Offset 746496
Size 102400
Entropy 0.00
PE imports
_CorExeMain
Number of PE resources by type
RT_ICON 10
RT_GROUP_ICON 1
RT_VERSION 1
RT_MANIFEST 1
Number of PE resources by language
NEUTRAL 12
ENGLISH US 1
PE resources
Debug information
ExifTool file metadata
UninitializedDataSize
0

LinkerVersion
11.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
0.0.0.0

LanguageCode
English (U.S.)

FileFlagsMask
0x0000

FileDescription
Spotify

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Unicode

InitializedDataSize
169472

EntryPoint
0x8ea8e

MIMEType
application/octet-stream

Subsystem
Windows GUI

TimeStamp
2018:09:12 16:22:36+01:00

FileType
Win32 EXE

PEType
PE32

SubsystemVersion
4.0

OSVersion
4.0

FileOS
Unknown (0)

LegalCopyright
Copyright (c) 2018, Spotify Ltd

MachineType
Intel 386 or later, and compatibles

CodeSize
576512

ProductName
Spotify

ProductVersionNumber
0.0.0.0

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 a5e833ddef0d2f698025ff27b0752aff
SHA1 72b5416e35d76715237ee1d3c5223a2d8fbd7f6d
SHA256 5ea2ab607d4fd6a8282b1ec5c8912131511222488cad5a0af8d90c247b83e9b7
ssdeep
24576:hGRdP4utIsrBZAlRn7x8+MWHZKXIqaZS65TkG+rGg1JFZPP7gyi04lidkWqEzy9o:li

authentihash 8db58814636e83d81c17bbfef523bdfb476475f274dbdb3717e9cb4fdb0a23e4
imphash f34d5f2d4577ed6d9ceec516c1f5a744
File size 829.0 KB ( 848896 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic CIL Executable (.NET, Mono, etc.) (81.0%)
Win32 Dynamic Link Library (generic) (7.2%)
Win32 Executable (generic) (4.9%)
OS/2 Executable (generic) (2.2%)
Generic Win/DOS Executable (2.2%)
Tags
peexe assembly overlay

VirusTotal metadata
First submission 2018-09-13 14:16:30 UTC ( 8 months, 2 weeks ago )
Last submission 2018-09-13 14:16:30 UTC ( 8 months, 2 weeks ago )
File names 14207054
qqqq.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!