× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 72b036c9eaffc5c9be8d2d547cd94ea87cea334a401bfc35d2b332f64deca7b0
File name: aGate_v1.exe
Detection ratio: 6 / 63
Analysis date: 2017-07-13 08:13:07 UTC ( 4 months, 1 week ago ) View latest
Antivirus Result Update
CrowdStrike Falcon (ML) malicious_confidence_89% (D) 20170420
Endgame malicious (high confidence) 20170706
ESET-NOD32 a variant of MSIL/DllInject.DV potentially unsafe 20170713
Ikarus PUA.MSIL.Dllinject 20170713
Rising Malware.Heuristic!ET#100% (rdm+) 20170713
Sophos AV Mal/MSIL-AX 20170713
Ad-Aware 20170713
AegisLab 20170713
AhnLab-V3 20170713
Alibaba 20170713
ALYac 20170713
Antiy-AVL 20170713
Arcabit 20170713
Avast 20170713
AVG 20170713
Avira (no cloud) 20170713
AVware 20170713
Baidu 20170713
BitDefender 20170713
Bkav 20170713
CAT-QuickHeal 20170713
ClamAV 20170713
CMC 20170713
Comodo 20170713
Cylance 20170713
Cyren 20170713
DrWeb 20170713
Emsisoft 20170713
F-Prot 20170713
F-Secure 20170713
Fortinet 20170629
GData 20170713
Sophos ML 20170607
Jiangmin 20170713
K7AntiVirus 20170713
K7GW 20170713
Kaspersky 20170713
Kingsoft 20170713
Malwarebytes 20170713
MAX 20170713
McAfee 20170713
McAfee-GW-Edition 20170713
Microsoft 20170712
eScan 20170713
NANO-Antivirus 20170713
nProtect 20170713
Palo Alto Networks (Known Signatures) 20170713
Panda 20170712
Qihoo-360 20170713
SentinelOne (Static ML) 20170516
SUPERAntiSpyware 20170713
Symantec 20170713
Symantec Mobile Insight 20170713
Tencent 20170713
TheHacker 20170712
TrendMicro 20170713
TrendMicro-HouseCall 20170713
Trustlook 20170713
VBA32 20170712
VIPRE 20170713
ViRobot 20170713
Webroot 20170713
WhiteArmor 20170713
Yandex 20170712
Zillya 20170712
ZoneAlarm by Check Point 20170713
Zoner 20170713
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © DXTGaming 2017 - 2018

Product DXT_VIP-Loader
Original name aGate_v1.exe
Internal name aGate_v1.exe
File version 1.0.0.0
Description Anti aGate Loader
Comments Special Force VIP Project
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2017-07-13 07:36:06
Entry Point 0x000A86EE
Number of sections 3
.NET details
Module Version ID e4ea332c-18c6-4543-b027-49a67feb1f21
TypeLib ID 74de2989-2385-459e-8220-00bd1bd2b540
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_ICON 5
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 8
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
4.0

Comments
Special Force VIP Project

LinkerVersion
11.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.0.0.0

LanguageCode
Neutral

FileFlagsMask
0x003f

FileDescription
Anti aGate Loader

CharacterSet
Unicode

InitializedDataSize
67072

EntryPoint
0xa86ee

OriginalFileName
aGate_v1.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright DXTGaming 2017 - 2018

FileVersion
1.0.0.0

TimeStamp
2017:07:13 08:36:06+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
aGate_v1.exe

ProductVersion
1.0.0.0

UninitializedDataSize
0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
DXTGaming Community

CodeSize
681984

ProductName
DXT_VIP-Loader

ProductVersionNumber
1.0.0.0

FileTypeExtension
exe

ObjectFileType
Executable application

AssemblyVersion
1.0.0.0

Compressed bundles
File identification
MD5 c075d4c800b52e373d96b48e7a7e83b8
SHA1 22592567418dc6fae9ae92135da895be5af8ff9a
SHA256 72b036c9eaffc5c9be8d2d547cd94ea87cea334a401bfc35d2b332f64deca7b0
ssdeep
12288:mSFau2c7F6UYirMZoYtCaBFsi/wVNASkRyMExX72ot0CvVNASkRyME:paurPQZJtCaQi/uNnEyMEZ7RG6NnEyME

authentihash 60e8e8b621c3b52695cdfc3b83aff06a52dda7fc6239294b57f71625003d89e7
imphash f34d5f2d4577ed6d9ceec516c1f5a744
File size 732.0 KB ( 749568 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic CIL Executable (.NET, Mono, etc.) (63.1%)
Win64 Executable (generic) (23.8%)
Win32 Dynamic Link Library (generic) (5.6%)
Win32 Executable (generic) (3.8%)
Generic Win/DOS Executable (1.7%)
Tags
peexe assembly

VirusTotal metadata
First submission 2017-07-13 08:13:07 UTC ( 4 months, 1 week ago )
Last submission 2017-08-25 19:25:45 UTC ( 2 months, 4 weeks ago )
File names aGate_v1.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!