× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 7f57e894be1aa16e109a2c94d2a095506bf224da2b9fd8f664c3d374e892a34d
File name: starboy.exe
Detection ratio: 13 / 67
Analysis date: 2018-02-15 05:39:50 UTC ( 1 year, 3 months ago ) View latest
Antivirus Result Update
AhnLab-V3 Trojan/Win32.MDA.R107085 20180214
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9794 20180208
CrowdStrike Falcon (ML) malicious_confidence_100% (D) 20170201
Cybereason malicious.145f9f 20180205
Cylance Unsafe 20180215
Endgame malicious (high confidence) 20180214
ESET-NOD32 a variant of MSIL/Kryptik.MVB 20180215
Fortinet MSIL/Kryptik.MVB!tr 20180215
Sophos ML heuristic 20180121
McAfee Artemis!5DE529649099 20180215
McAfee-GW-Edition BehavesLike.Win32.Trojan.gh 20180215
Qihoo-360 HEUR/QVM03.0.37B7.Malware.Gen 20180215
SentinelOne (Static ML) static engine - malicious 20180115
Ad-Aware 20180215
AegisLab 20180215
Alibaba 20180209
ALYac 20180215
Arcabit 20180215
Avast 20180215
Avast-Mobile 20180214
AVG 20180215
Avira (no cloud) 20180215
AVware 20180215
BitDefender 20180215
Bkav 20180212
CAT-QuickHeal 20180214
ClamAV 20180215
CMC 20180215
Comodo 20180215
Cyren 20180215
DrWeb 20180215
eGambit 20180215
Emsisoft 20180215
F-Prot 20180215
F-Secure 20180215
GData 20180215
Ikarus 20180214
Jiangmin 20180214
K7AntiVirus 20180215
K7GW 20180215
Kaspersky 20180215
Kingsoft 20180215
Malwarebytes 20180215
MAX 20180215
Microsoft 20180215
eScan 20180215
NANO-Antivirus 20180215
nProtect 20180215
Palo Alto Networks (Known Signatures) 20180215
Panda 20180214
Rising 20180215
Sophos AV 20180215
SUPERAntiSpyware 20180215
Symantec 20180214
Symantec Mobile Insight 20180215
Tencent 20180215
TheHacker 20180213
TotalDefense 20180215
TrendMicro 20180215
TrendMicro-HouseCall 20180215
Trustlook 20180215
VBA32 20180214
VIPRE 20180215
ViRobot 20180215
Webroot 20180215
WhiteArmor 20180205
Yandex 20180214
Zillya 20180214
ZoneAlarm by Check Point 20180215
Zoner 20180215
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2017 Duke Energy Corp

Product cobas TaqScreen West Nile Virus Test
Original name starboy.exe
Internal name starboy.exe
File version 6.8.19.2
Description cobas TaqScreen West Nile Virus Test
Comments ibadaqayubowigar
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2017-05-08 03:03:45
Entry Point 0x00047EBE
Number of sections 3
.NET details
Module Version ID d39db24f-6c12-46f9-9fea-ee46accb859f
TypeLib ID a5c90a01-f920-4065-9655-2af0a1bfa54a
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_ICON 1
RT_GROUP_ICON 1
RT_VERSION 1
RT_MANIFEST 1
Number of PE resources by language
NEUTRAL 4
PE resources
ExifTool file metadata
SubsystemVersion
4.0

Comments
ibadaqayubowigar

LinkerVersion
8.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
6.8.19.2

LanguageCode
Neutral

FileFlagsMask
0x003f

FileDescription
cobas TaqScreen West Nile Virus Test

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Unicode

InitializedDataSize
212480

EntryPoint
0x47ebe

OriginalFileName
starboy.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright 2017 Duke Energy Corp

FileVersion
6.8.19.2

TimeStamp
2017:05:08 05:03:45+02:00

FileType
Win32 EXE

PEType
PE32

InternalName
starboy.exe

ProductVersion
6.8.19.2

UninitializedDataSize
0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Duke Energy Corp

CodeSize
286720

ProductName
cobas TaqScreen West Nile Virus Test

ProductVersionNumber
6.8.19.2

FileTypeExtension
exe

ObjectFileType
Executable application

AssemblyVersion
0.0.0.0

File identification
MD5 5de529649099c0939abddfc06d0c1ceb
SHA1 87fa5a0145f9f78e78c623192921d29043095001
SHA256 7f57e894be1aa16e109a2c94d2a095506bf224da2b9fd8f664c3d374e892a34d
ssdeep
6144:dWki0OxLM+MHN3RyrykHrlHwfJdXX17EByFc8nti:i0OxLpMHOrrre/XyBSi

authentihash 1aecf8ba73c4607308ae4cc1e0dc650830b6ef85cca2eae8087dbd688c955f92
imphash f34d5f2d4577ed6d9ceec516c1f5a744
File size 488.0 KB ( 499712 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic CIL Executable (.NET, Mono, etc.) (79.2%)
Win32 Dynamic Link Library (generic) (7.1%)
Win32 Executable (generic) (4.8%)
Win16/32 Executable Delphi generic (2.2%)
OS/2 Executable (generic) (2.1%)
Tags
peexe assembly

VirusTotal metadata
First submission 2018-02-15 05:39:50 UTC ( 1 year, 3 months ago )
Last submission 2018-02-15 05:39:50 UTC ( 1 year, 3 months ago )
File names starboy.exe
VirusShare_5de529649099c0939abddfc06d0c1ceb
starboy.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!