× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 6c6af08e0b3f990d3644955a2e8cdb47a319b75d7d0e354aa82a6816ffd2797e
File name: HirokuScript.exe
Detection ratio: 29 / 55
Analysis date: 2016-01-13 09:35:56 UTC ( 3 years, 4 months ago ) View latest
Antivirus Result Update
Ad-Aware Trojan.Generic.15487979 20160113
ALYac Trojan.Generic.15487979 20160113
Arcabit Trojan.Generic.DEC53EB 20160113
Avast Win32:Malware-gen 20160113
AVG MSIL9.AYAZ 20160113
Avira (no cloud) TR/Injector.648704.11 20160113
AVware Trojan.Win32.Generic!BT 20160111
Baidu-International Trojan.MSIL.Injector.JIJ 20160112
BitDefender Trojan.Generic.15487979 20160113
Cyren W32/Trojan.MOLV-7908 20160113
Emsisoft Trojan.Generic.15487979 (B) 20160113
ESET-NOD32 a variant of MSIL/Injector.JIJ 20160113
Fortinet MSIL/JIJ!tr 20160113
GData Trojan.Generic.15487979 20160113
Ikarus Trojan.MSIL.Injector 20160113
K7AntiVirus Trojan ( 004bf47b1 ) 20160113
K7GW Trojan ( 004bf47b1 ) 20160113
McAfee RDN/Generic.dx 20160113
McAfee-GW-Edition RDN/Generic.dx 20160113
eScan Trojan.Generic.15487979 20160113
nProtect Trojan.Generic.15487979 20160113
Panda Trj/CI.A 20160112
Qihoo-360 HEUR/QVM03.0.Malware.Gen 20160113
Rising PE:Malware.Generic/QRS!1.9E2D [F] 20160113
Sophos AV Mal/Generic-S 20160113
Symantec Trojan.Gen 20160112
Tencent Win32.Trojan.Inject.Tbsn 20160113
TrendMicro TROJ_GEN.R02KC0PA716 20160113
VIPRE Trojan.Win32.Generic!BT 20160113
AegisLab 20160113
Yandex 20160111
AhnLab-V3 20160113
Alibaba 20160113
Antiy-AVL 20160113
Bkav 20160112
ByteHero 20160113
CAT-QuickHeal 20160113
ClamAV 20160113
CMC 20160111
Comodo 20160113
DrWeb 20160113
F-Prot 20160111
F-Secure 20160113
Jiangmin 20160113
Kaspersky 20160113
Malwarebytes 20160113
Microsoft 20160113
NANO-Antivirus 20160113
SUPERAntiSpyware 20160113
TheHacker 20160113
TrendMicro-HouseCall 20160113
VBA32 20160112
ViRobot 20160113
Zillya 20160112
Zoner 20160113
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © Microsoft 2015

Original name HirokuScript.exe
Internal name HirokuScript.exe
File version 2.0.0.0
Description
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2015-10-06 15:15:56
Entry Point 0x0001200E
Number of sections 4
.NET details
Module Version ID 3a2367a3-0b43-4574-9025-570c1caf71f5
TypeLib ID 84a59bb6-a8b1-47c7-a4a3-7551fa730431
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_ICON 15
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 18
PE resources
Debug information
ExifTool file metadata
UninitializedDataSize
0

LinkerVersion
6.0

ImageVersion
0.0

FileVersionNumber
2.0.0.0

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
581632

EntryPoint
0x1200e

OriginalFileName
HirokuScript.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright Microsoft 2015

FileVersion
2.0.0.0

TimeStamp
2015:10:06 16:15:56+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
HirokuScript.exe

ProductVersion
2.0.0.0

SubsystemVersion
4.0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CodeSize
66048

FileSubtype
0

ProductVersionNumber
2.0.0.0

FileTypeExtension
exe

ObjectFileType
Executable application

AssemblyVersion
2.0.0.0

File identification
MD5 cacdbf4b12c4108a6e79ec1f89beefb8
SHA1 9ff00b10697592d7fe9eda49982972163c5bd64c
SHA256 6c6af08e0b3f990d3644955a2e8cdb47a319b75d7d0e354aa82a6816ffd2797e
ssdeep
3072:fuNo/FvkwPvGnLGQhiRcVA4HE3FbVVpd+StSB6fxt5VP1e9g+7:fuNo//vsLGQhiRIPHuVX+

authentihash b0431a5dd6648996e0e133b2ec2d1c94b6d6f7bd12ba8f2b64ad97fbd3d1acb2
imphash f34d5f2d4577ed6d9ceec516c1f5a744
File size 633.5 KB ( 648704 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic CIL Executable (.NET, Mono, etc.) (81.0%)
Win32 Dynamic Link Library (generic) (7.2%)
Win32 Executable (generic) (4.9%)
Win16/32 Executable Delphi generic (2.2%)
Generic Win/DOS Executable (2.2%)
Tags
peexe assembly

VirusTotal metadata
First submission 2015-12-20 12:49:51 UTC ( 3 years, 5 months ago )
Last submission 2016-03-01 09:18:43 UTC ( 3 years, 2 months ago )
File names filename
HirokuScript.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!