× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 7ec5ca47b482c545579aacacf10397a440716c850fa2defa559d97f60e0e0252
File name: vt-upload-Yjdn1
Detection ratio: 43 / 54
Analysis date: 2014-06-18 00:31:28 UTC ( 4 years, 5 months ago ) View latest
Antivirus Result Update
Ad-Aware Trojan.Generic.11298638 20140618
Yandex Trojan.Yakes!UQPKnug/tgs 20140614
AntiVir TR/Crypt.ZPACK.81228 20140618
Antiy-AVL Trojan/Win32.Yakes 20140617
Avast Win32:Rootkit-gen [Rtk] 20140618
AVG Zbot.IWA 20140618
Baidu-International Trojan.Win32.CoinMiner.bCT 20140617
BitDefender Trojan.Generic.11298638 20140618
Bkav W32.VariantBuzusAC.Trojan 20140617
ByteHero Trojan.Win32.Heur.Gen 20140618
CAT-QuickHeal Trojan.Yakes.r4 20140617
Comodo UnclassifiedMalware 20140618
DrWeb BackDoor.Tishop.122 20140618
Emsisoft Trojan.Generic.11298638 (B) 20140618
ESET-NOD32 Win32/CoinMiner.CT 20140618
F-Secure Trojan.Generic.11298638 20140618
Fortinet W32/Yakes.CT!tr 20140617
GData Trojan.Generic.11298638 20140618
Ikarus Virus.Win32.Zbot 20140617
Jiangmin Trojan/Gimemo.jjd 20140617
K7AntiVirus Trojan ( 004361bc1 ) 20140617
K7GW Trojan ( 050000001 ) 20140617
Kaspersky Trojan.Win32.Yakes.epvj 20140617
Malwarebytes Spyware.Zbot.ED 20140618
McAfee PWSZbot-FXE!F4FE37DAF438 20140618
McAfee-GW-Edition PWSZbot-FXE!F4FE37DAF438 20140617
Microsoft Trojan:Win32/Vicenor 20140617
eScan Trojan.Generic.11298638 20140618
NANO-Antivirus Trojan.Win32.Gimemo.cylmfo 20140617
Norman Troj_Generic.TZEMK 20140617
nProtect Trojan.Generic.11298638 20140617
Panda Trj/CI.A 20140617
Qihoo-360 HEUR/Malware.QVM19.Gen 20140618
Sophos AV Troj/Agent-AHEH 20140617
Symantec Trojan.Zbot 20140617
Tencent Win32.Trojan.Yakes.Efkw 20140618
TheHacker Trojan/CoinMiner.ct 20140617
TrendMicro TROJ_SPNR.0BF514 20140617
TrendMicro-HouseCall TROJ_SPNR.0BF514 20140618
VBA32 Trojan.Yakes 20140617
VIPRE Trojan.Win32.Generic!BT 20140618
ViRobot Trojan.Win32.Injector.94208.C 20140618
Zillya Trojan.Yakes.Win32.20824 20140617
AegisLab 20140618
AhnLab-V3 20140617
ClamAV 20140618
CMC 20140617
Commtouch 20140618
F-Prot 20140618
Kingsoft 20140618
Rising 20140617
SUPERAntiSpyware 20140618
TotalDefense 20140617
Zoner 20140616
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2000-01-06 18:34:28
Entry Point 0x00002ADE
Number of sections 4
PE sections
PE imports
__p__fmode
__wgetmainargs
fread
fclose
strcat
__dllonexit
fopen
_except_handler3
?terminate@@YAXXZ
fseek
_onexit
ftell
exit
_XcptFilter
rewind
__setusermatherr
_adjust_fdiv
_wcmdln
__CxxFrameHandler
_exit
__p__commode
_wfopen
_controlfp
_initterm
__set_app_type
Number of PE resources by type
\x90NG 2
RT_ICON 1
Number of PE resources by language
NEUTRAL 1
CHINESE *unknown* 1
CHINESE SIMPLIFIED 1
PE resources
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

TimeStamp
2000:01:06 19:34:28+01:00

FileType
Win32 EXE

PEType
PE32

CodeSize
12288

LinkerVersion
8.0

EntryPoint
0x2ade

InitializedDataSize
299008

SubsystemVersion
4.0

ImageVersion
0.0

OSVersion
4.0

UninitializedDataSize
0

File identification
MD5 f4fe37daf438dca801c7c914eaf2913c
SHA1 e2626802f095f2a304397ca995676970f0e5c663
SHA256 7ec5ca47b482c545579aacacf10397a440716c850fa2defa559d97f60e0e0252
ssdeep
6144:JtXm4FMcw8JhRnGNrXmeJ6QZ3k+xxYPQbNcB+7KOfF2IUvoXB2Q/PTgmk:PW4FlHnArXvb3kkxcb+7KmpUIdnTgmk

authentihash 500d059d6a79dc4ada4ce66cfeeec5e70512de039bc9c24b603bc9eade723ee8
imphash ffb066d665a52914bbf4b713feffd4df
File size 308.0 KB ( 315392 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (67.3%)
Win32 Dynamic Link Library (generic) (14.2%)
Win32 Executable (generic) (9.7%)
Generic Win/DOS Executable (4.3%)
DOS Executable Generic (4.3%)
Tags
corrupt peexe

VirusTotal metadata
First submission 2014-05-19 05:19:29 UTC ( 4 years, 6 months ago )
Last submission 2014-05-19 05:19:29 UTC ( 4 years, 6 months ago )
File names vt-upload-Yjdn1
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!