× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 8026c7006df7a6cb92cc70aff48dc3a2887e912a33f4a90bfa0297fc2a6ecc31
File name: uv4V4N.exe
Detection ratio: 45 / 71
Analysis date: 2019-01-04 10:27:24 UTC ( 1 month, 2 weeks ago ) View latest
Antivirus Result Update
Ad-Aware Gen:Variant.Ser.Razy.997 20190104
AegisLab Trojan.Win32.Emotet.4!c 20190104
AhnLab-V3 Trojan/Win32.Emotet.R250466 20190104
ALYac Gen:Variant.Ser.Razy.997 20190104
Arcabit Trojan.Ser.Razy.997 20190104
Avast Win32:Malware-gen 20190104
AVG Win32:Malware-gen 20190104
Avira (no cloud) TR/Crypt.XPACK.Gen8 20190104
BitDefender Gen:Variant.Ser.Razy.997 20190104
Comodo TrojWare.Win32.Trojan.XPack.~gen1@1rwlif 20190104
CrowdStrike Falcon (ML) malicious_confidence_90% (W) 20181022
Cylance Unsafe 20190104
Cyren W32/Trojan.MNEL-6840 20190104
eGambit Unsafe.AI_Score_58% 20190104
Emsisoft Gen:Variant.Ser.Razy.997 (B) 20190104
Endgame malicious (high confidence) 20181108
ESET-NOD32 a variant of Win32/Kryptik.GOFN 20190104
F-Secure Gen:Variant.Ser.Razy.997 20190104
Fortinet W32/Androm!tr.bdr 20190104
GData Gen:Variant.Ser.Razy.997 20190104
Ikarus Trojan-Banker.Emotet 20190104
Sophos ML heuristic 20181128
K7GW Hacktool ( 700007861 ) 20190104
Kaspersky Trojan-Banker.Win32.Emotet.bxmx 20190104
Malwarebytes Trojan.Emotet 20190104
MAX malware (ai score=88) 20190104
McAfee RDN/Generic.grp 20190104
McAfee-GW-Edition BehavesLike.Win32.Backdoor.hm 20190104
Microsoft Trojan:Win32/Emotet.CZ 20190104
eScan Gen:Variant.Ser.Razy.997 20190104
NANO-Antivirus Trojan.Win32.Emotet.flsjqn 20190104
Palo Alto Networks (Known Signatures) generic.ml 20190104
Panda Trj/GdSda.A 20190103
Qihoo-360 Win32/Backdoor.85f 20190104
Rising Trojan.Kryptik!8.8 (CLOUD) 20190104
SentinelOne (Static ML) static engine - malicious 20181223
Sophos AV Mal/EncPk-ANY 20190104
Symantec Trojan.Gen.2 20190104
Tencent Win32.Trojan-banker.Emotet.Hsry 20190104
Trapmine malicious.high.ml.score 20190103
TrendMicro TROJ_GEN.R011C0PA119 20190104
TrendMicro-HouseCall TROJ_GEN.R011C0PA119 20190104
VBA32 TrojanBanker.Emotet 20190104
Webroot W32.Trojan.Emotet 20190104
ZoneAlarm by Check Point Trojan-Banker.Win32.Emotet.bxmx 20190104
Acronis 20181227
Alibaba 20180921
Antiy-AVL 20190104
Avast-Mobile 20190103
Babable 20180918
Baidu 20190104
Bkav 20190103
CAT-QuickHeal 20190103
ClamAV 20190104
CMC 20190103
Cybereason 20180225
DrWeb 20190104
F-Prot 20190104
Jiangmin 20190104
K7AntiVirus 20190104
Kingsoft 20190104
SUPERAntiSpyware 20190102
TACHYON 20190104
TheHacker 20181230
TotalDefense 20190104
Trustlook 20190104
VIPRE 20190103
ViRobot 20190103
Yandex 20181229
Zillya 20190103
Zoner 20190104
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © Sonic Solutions

File version 1.00.51a
Description VVBBBck
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2018-12-30 23:01:31
Entry Point 0x00007C80
Number of sections 5
PE sections
PE imports
IsValidAcl
GetUserNameW
EnumServicesStatusExW
FreeEncryptionCertificateHashList
GetSecurityDescriptorControl
IsTokenRestricted
EqualDomainSid
FindFirstFreeAce
GetSecurityDescriptorSacl
LookupAccountSidA
GetSecurityDescriptorOwner
LogonUserExW
LookupPrivilegeNameA
GetCurrentHwProfileW
GetOldestEventLogRecord
GetSecurityDescriptorLength
GetFileTitleA
GetSaveFileNameW
GetOpenFileNameW
GetWindowExtEx
GetSystemPaletteEntries
GetBkMode
GetWorldTransform
GetPaletteEntries
DeleteEnhMetaFile
GetDeviceGammaRamp
GetObjectA
DeleteDC
LineDDA
GetTextExtentExPointI
GetMetaFileA
GetTextExtentExPointW
DeleteColorSpace
GetPath
ExtTextOutA
ExtSelectClipRgn
ExtEscape
GetClipRgn
GetStretchBltMode
GetFontData
GetCharWidth32A
GetBkColor
GetVolumePathNameW
GetStdHandle
FileTimeToDosDateTime
GetConsoleOutputCP
FileTimeToSystemTime
GetFileAttributesA
GetDriveTypeA
GetPrivateProfileSectionNamesW
EnumUILanguagesW
GetLocalTime
FreeEnvironmentStringsA
GetLocaleInfoA
LocalAlloc
GetConsoleCursorInfo
GetLogicalDrives
VirtualLock
lstrcatW
FindResourceExA
FillConsoleOutputCharacterA
GetStringTypeA
WritePrivateProfileStructA
GetSystemTimeAsFileTime
GetThreadPriority
LoadResource
GlobalCompact
GlobalHandle
FindClose
WriteProcessMemory
GetLargestConsoleWindowSize
DeleteTimerQueueEx
FindNextVolumeW
GetProfileSectionW
GetPrivateProfileStructW
DeleteTimerQueueTimer
WriteProfileStringW
GetTapeParameters
LocalFlags
GetConsoleDisplayMode
GetVolumeNameForVolumeMountPointW
GetSystemDirectoryA
DecodePointer
FindAtomW
DebugActiveProcess
LocalFileTimeToFileTime
FindAtomA
GetCurrentThreadId
lstrcmpiA
ExitThread
GetStartupInfoA
GetWindowsDirectoryW
GetFileSize
FindVolumeMountPointClose
GetPrivateProfileIntW
GetComputerNameExA
ExpandEnvironmentStringsW
FreeConsole
FindActCtxSectionGuid
FindNextFileA
GetDiskFreeSpaceExA
lstrcmpW
FindFirstFileExW
ExpandEnvironmentStringsA
GetBinaryTypeA
EscapeCommFunction
GetPrivateProfileSectionA
LocalUnlock
GetShortPathNameW
GetSystemInfo
GetSystemWindowsDirectoryW
GetThreadLocale
GetTempPathA
GetUserGeoID
lstrlenW
GetShortPathNameA
GetQueuedCompletionStatus
FileTimeToLocalFileTime
GetCurrentDirectoryW
GetCommandLineW
GetCurrentDirectoryA
GetCurrentActCtx
GetCommandLineA
FlsFree
VirtualUnlock
EnumSystemCodePagesA
GetVersion
QueryIdleProcessorCycleTime
GetComputerNameExW
GetFileAttributesExA
GetProcessVersion
GetRecordInfoFromTypeInfo
LoadTypeLib
LoadTypeLibEx
ExtractAssociatedIconA
FindExecutableW
FindExecutableA
GetMenuPosFromID
InitializeSecurityContextA
DeleteSecurityContext
GetComputerObjectNameW
GetUserNameExW
GetMessageA
GetForegroundWindow
GetPropW
LoadBitmapW
EnumWindows
DefMDIChildProcW
FindWindowW
GetShellWindow
GetClassInfoExA
LoadAcceleratorsW
DefWindowProcA
FindWindowA
GetPropA
LoadMenuW
GetSysColorBrush
GetSystemMetrics
MessageBoxW
InsertMenuItemW
MessageBoxIndirectA
DialogBoxParamW
InsertMenuA
GetMessageTime
GetMenuDefaultItem
DrawTextA
GetClassWord
GetRawInputDeviceInfoW
DefFrameProcW
GetClassLongW
GetMenuContextHelpId
IsWindowVisible
GetRawInputData
DefFrameProcA
DialogBoxParamA
GetClientRect
GetMenuCheckMarkDimensions
GetWindowInfo
IsWindow
DrawFrameControl
LoadAcceleratorsA
DrawFocusRect
FindWindowExA
GetKeyboardLayout
GetMenuItemCount
DefDlgProcA
EnumThreadWindows
GetDesktopWindow
GetDialogBaseUnits
GetFocus
InsertMenuW
GetWindowRgnBox
InvalidateRgn
GetLastInputInfo
DeregisterShellHookWindow
FindNextUrlCacheEntryW
FindFirstUrlCacheEntryW
GetUrlCacheEntryInfoExA
GetUrlCacheEntryInfoExW
DeletePrinterDriverW
GetPrinterW
FindClosePrinterChangeNotification
FindFirstPrinterChangeNotification
GetStandardColorSpaceProfileW
strstr
fputws
strcspn
strtod
fwrite
localeconv
system
free
_time64
fprintf
strtoul
vprintf
strcoll
tolower
MkParseDisplayNameEx
IsValidURL
Number of PE resources by type
RT_VERSION 1
Number of PE resources by language
ENGLISH US 1
PE resources
ExifTool file metadata
UninitializedDataSize
0

LinkerVersion
12.0

ImageVersion
0.0

FileVersionNumber
1.0.51.0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

FileDescription
VVBBBck

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Unicode

InitializedDataSize
192512

EntryPoint
0x7c80

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
1.00.51a

TimeStamp
2018:12:30 23:01:31+00:00

FileType
Win32 EXE

PEType
PE32

SubsystemVersion
5.0

OSVersion
5.1

FileOS
Win32

LegalCopyright
Copyright Sonic Solutions

MachineType
Intel 386 or later, and compatibles

CompanyName
Sonic Solutions

CodeSize
178176

FileSubtype
0

ProductVersionNumber
1.0.0.1

FileTypeExtension
exe

ObjectFileType
Dynamic link library

File identification
MD5 9472fcd092dfaabdc5eb7f112b2d0227
SHA1 3384979e465a4db45dff4e806be921be018e068b
SHA256 8026c7006df7a6cb92cc70aff48dc3a2887e912a33f4a90bfa0297fc2a6ecc31
ssdeep
3072:DErXk7Pnky2mpfb7hMd4w3wMS7TTgCkkNoInu2Ca1vtm:Iry2Q15w3wMQThkk6InuX

authentihash 1c2eecb0fa71ed9421c76ba87852b5cbedeef1617231c66c1e7c9ead6faf01d6
imphash 2705e489c02ec16abf72a9b13138a02e
File size 544.0 KB ( 557056 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable (generic) (42.7%)
OS/2 Executable (generic) (19.2%)
Generic Win/DOS Executable (18.9%)
DOS Executable Generic (18.9%)
Tags
peexe

VirusTotal metadata
First submission 2018-12-30 23:04:46 UTC ( 1 month, 2 weeks ago )
Last submission 2018-12-30 23:04:46 UTC ( 1 month, 2 weeks ago )
File names uv4V4N.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!