× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 829e137279f691e493c211108b62c8e15b079bd619ba19ad388450878e0585d0
File name: VPN-Pro.exe
Detection ratio: 54 / 65
Analysis date: 2018-05-11 16:38:45 UTC ( 2 months, 1 week ago )
Antivirus Result Update
Ad-Aware Gen:Variant.Kazy.187936 20180511
AegisLab Troj.Ransom.W32.Blocker.bkfc!c 20180511
AhnLab-V3 Trojan/Win32.Blocker.C229364 20180511
ALYac Gen:Variant.Kazy.187936 20180511
Antiy-AVL Trojan[Ransom]/Win32.Blocker 20180511
Arcabit Trojan.Kazy.D2DE20 20180511
Avast MSIL:BackDoor-C [Trj] 20180511
AVG MSIL:BackDoor-C [Trj] 20180511
Avira (no cloud) TR/Spy.Gen 20180511
AVware Trojan.Win32.Generic!BT 20180428
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9956 20180511
BitDefender Gen:Variant.Kazy.187936 20180511
CAT-QuickHeal Trojan.Gendemal 20180511
CMC Trojan-Ransom.Win32.Blocker!O 20180511
Comodo .UnclassifiedMalware 20180511
CrowdStrike Falcon (ML) malicious_confidence_100% (W) 20180418
Cylance Unsafe 20180511
Cyren W32/Trojan.INYK-3933 20180511
Emsisoft Gen:Variant.Kazy.187936 (B) 20180511
ESET-NOD32 a variant of MSIL/TrojanDropper.Agent.ABS 20180511
F-Secure Gen:Variant.Kazy.187936 20180511
Fortinet W32/Blocker.BKFC!tr 20180511
GData Gen:Variant.Kazy.187936 20180511
Ikarus Trojan-Dropper.MSIL.Agent 20180511
Jiangmin Trojan/Blocker.euc 20180511
K7AntiVirus Trojan ( 004a942f1 ) 20180511
K7GW Trojan ( 004a942f1 ) 20180511
Kaspersky HEUR:Trojan.Win32.Generic 20180511
Kingsoft Win32.Troj.Undef.(kcloud) 20180511
MAX malware (ai score=99) 20180511
McAfee Artemis!8EDA7DFA4EC4 20180511
McAfee-GW-Edition Artemis!Trojan 20180511
Microsoft Trojan:MSIL/Gendemal 20180511
eScan Gen:Variant.Kazy.187936 20180511
NANO-Antivirus Trojan.Win32.Blocker.cqktgq 20180511
nProtect Trojan/W32.Blocker.2065408 20180511
Palo Alto Networks (Known Signatures) generic.ml 20180511
Panda Generic Malware 20180511
Qihoo-360 Win32/Trojan.Ransom.8bf 20180511
Rising Backdoor.Shadow!1.6A6A (CLOUD) 20180511
SentinelOne (Static ML) static engine - malicious 20180225
Sophos AV Mal/SpyGate-A 20180511
Symantec Trojan.Gen 20180511
Tencent Win32.Trojan.Spy.Efve 20180511
TheHacker Trojan/Dropper.Agent.abs 20180509
TrendMicro TROJ_DROPPR.SS 20180511
TrendMicro-HouseCall TROJ_DROPPR.SS 20180511
VBA32 Trojan.MSIL.Gendemal 20180511
VIPRE Trojan.Win32.Generic!BT 20180511
ViRobot Dropper.S.Agent.2065408 20180511
Webroot W32.Trojan.Gen 20180511
Yandex Trojan.Blocker!QGeiRRIY22g 20180511
Zillya Trojan.Blocker.Win32.10745 20180511
ZoneAlarm by Check Point HEUR:Trojan.Win32.Generic 20180511
Alibaba 20180511
Avast-Mobile 20180511
Babable 20180406
Bkav 20180511
ClamAV 20180511
Cybereason None
eGambit 20180511
Endgame 20180507
F-Prot 20180511
Sophos ML 20180503
Malwarebytes 20180511
SUPERAntiSpyware 20180511
Symantec Mobile Insight 20180511
Trustlook 20180511
Zoner 20180511
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2013

Product VPN-Pro
Original name VPN-Pro.exe
Internal name VPN-Pro.exe
File version 1.0.0.0
Description VPN-Pro
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2013-06-15 21:41:31
Entry Point 0x001E849E
Number of sections 4
.NET details
Module Version ID a09ff2c3-b2b3-4445-b4fd-e68ebffd5ec6
TypeLib ID 745869ad-dd0b-4df4-9a9c-f2ca1f94e6a9
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_ICON 1
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 4
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
4.0

InitializedDataSize
72192

ImageVersion
0.0

ProductName
VPN-Pro

FileVersionNumber
1.0.0.0

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

LinkerVersion
8.0

FileTypeExtension
exe

OriginalFileName
VPN-Pro.exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
1.0.0.0

TimeStamp
2013:06:15 22:41:31+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
VPN-Pro.exe

ProductVersion
1.0.0.0

FileDescription
VPN-Pro

OSVersion
4.0

FileOS
Win32

LegalCopyright
Copyright 2013

MachineType
Intel 386 or later, and compatibles

CodeSize
1992192

FileSubtype
0

ProductVersionNumber
1.0.0.0

EntryPoint
0x1e849e

ObjectFileType
Executable application

AssemblyVersion
1.0.0.0

File identification
MD5 8eda7dfa4ec4ac975bb12d2a3186bbeb
SHA1 b5c49bbbf7499a30110adc94480b3edbc8d6e92b
SHA256 829e137279f691e493c211108b62c8e15b079bd619ba19ad388450878e0585d0
ssdeep
49152:IaaQPYYOQrEtAVy5/r56qfxpAFhrlfteP1BD4EaaQ:TaQPYYd8EOAqfxpehrdtePL4naQ

authentihash 8edae25e50e1873573212185dc80e8ed9a5c55cef66cea88a494fc0c92eb3e63
imphash f34d5f2d4577ed6d9ceec516c1f5a744
File size 2.0 MB ( 2065408 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic CIL Executable (.NET, Mono, etc.) (44.5%)
Win32 Executable MS Visual C++ (generic) (18.9%)
Win64 Executable (generic) (16.8%)
Windows screen saver (7.9%)
Win32 Dynamic Link Library (generic) (4.0%)
Tags
peexe assembly

VirusTotal metadata
First submission 2013-06-15 22:45:33 UTC ( 5 years, 1 month ago )
Last submission 2018-05-11 16:38:45 UTC ( 2 months, 1 week ago )
File names 8eda7dfa4ec4ac975bb12d2a3186bbeb.exe
829E137279F691E493C211108B62C8E15B079BD619BA19AD388450878E0585D0.exe
VPN-Pro.exe
VPN-Pro.exe
8EDA7DFA4EC4AC975BB12D2A3186BBEB
file-5932656_exe
879514db-811a-411b-9332-9255828b4987
VPN-Pro.exe
a1664fe7-4bba-459e-9806-f8adf431d59b
vpn-pro.exe
VPN-Pro.exe
8eda7dfa4ec4ac975bb12d2a3186bbeb
Trojan-Ransom.Win32.Blocker.bkfc .exe
VPN-Pro.exe
05.exe
VPN-Pro.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!