× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 829e137279f691e493c211108b62c8e15b079bd619ba19ad388450878e0585d0
File name: VPN-Pro.exe
Detection ratio: 56 / 70
Analysis date: 2018-12-15 14:52:51 UTC ( 1 day ago )
Antivirus Result Update
Ad-Aware Gen:Variant.Kazy.187936 20181215
AegisLab Trojan.Win32.Blocker.j!c 20181214
AhnLab-V3 Trojan/Win32.Blocker.C229364 20181214
ALYac Gen:Variant.Kazy.187936 20181215
Antiy-AVL Trojan[Ransom]/Win32.Blocker 20181215
Arcabit Trojan.Kazy.D2DE20 20181215
Avast MSIL:BackDoor-C [Trj] 20181215
AVG MSIL:BackDoor-C [Trj] 20181215
Avira (no cloud) TR/Spy.Gen 20181215
AVware Trojan.Win32.Generic!BT 20180925
BitDefender Gen:Variant.Kazy.187936 20181215
CAT-QuickHeal Trojan.Gendemal 20181215
CMC Trojan-Ransom.Win32.Blocker!O 20181215
Comodo Malware@#1ye7octnb9586 20181215
CrowdStrike Falcon (ML) malicious_confidence_70% (D) 20181022
Cylance Unsafe 20181215
Cyren W32/Trojan.INYK-3933 20181215
DrWeb Trojan.DownLoader10.15702 20181215
Emsisoft Gen:Variant.Kazy.187936 (B) 20181215
ESET-NOD32 a variant of MSIL/TrojanDropper.Agent.ABS 20181215
F-Secure Gen:Variant.Kazy.187936 20181215
Fortinet W32/Blocker.BKFC!tr 20181215
GData Gen:Variant.Kazy.187936 20181215
Ikarus Trojan-Dropper.MSIL.Agent 20181215
Sophos ML heuristic 20181128
Jiangmin Trojan/Blocker.euc 20181215
K7AntiVirus Trojan ( 004a942f1 ) 20181215
K7GW Trojan ( 004a942f1 ) 20181215
Kaspersky HEUR:Trojan.Win32.Generic 20181215
Kingsoft Win32.Troj.Undef.(kcloud) 20181215
MAX malware (ai score=99) 20181215
McAfee Artemis!8EDA7DFA4EC4 20181215
McAfee-GW-Edition Artemis!Trojan 20181215
Microsoft Trojan:MSIL/Gendemal 20181215
eScan Gen:Variant.Kazy.187936 20181215
NANO-Antivirus Trojan.Win32.Blocker.cqktgq 20181215
Palo Alto Networks (Known Signatures) generic.ml 20181215
Panda Generic Malware 20181215
Qihoo-360 Win32/Trojan.Ransom.8bf 20181215
Rising Backdoor.Shadow!1.6A6A (CLOUD) 20181215
SentinelOne (Static ML) static engine - malicious 20181011
Sophos AV Mal/SpyGate-A 20181215
Symantec Trojan.Gen 20181215
TACHYON Trojan/W32.Blocker.2065408 20181214
Tencent Win32.Trojan.Spy.Efve 20181215
TheHacker Trojan/Dropper.Agent.abs 20181213
Trapmine suspicious.low.ml.score 20181205
TrendMicro TROJ_DROPPR.SS 20181215
TrendMicro-HouseCall TROJ_DROPPR.SS 20181215
VBA32 Trojan.MSIL.Gendemal 20181214
VIPRE Trojan.Win32.Generic!BT 20181213
ViRobot Dropper.S.Agent.2065408 20181214
Webroot W32.Trojan.Gen 20181215
Yandex Trojan.Blocker!QGeiRRIY22g 20181214
Zillya Trojan.Blocker.Win32.10745 20181215
ZoneAlarm by Check Point HEUR:Trojan.Win32.Generic 20181215
Alibaba 20180921
Avast-Mobile 20181215
Babable 20180918
Baidu 20181207
Bkav 20181214
ClamAV 20181215
eGambit 20181215
Endgame 20181108
F-Prot 20181215
Malwarebytes 20181215
SUPERAntiSpyware 20181212
Symantec Mobile Insight 20181215
TotalDefense 20181215
Trustlook 20181215
Zoner 20181215
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2013

Product VPN-Pro
Original name VPN-Pro.exe
Internal name VPN-Pro.exe
File version 1.0.0.0
Description VPN-Pro
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2013-06-15 21:41:31
Entry Point 0x001E849E
Number of sections 4
.NET details
Module Version ID a09ff2c3-b2b3-4445-b4fd-e68ebffd5ec6
TypeLib ID 745869ad-dd0b-4df4-9a9c-f2ca1f94e6a9
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_ICON 1
RT_GROUP_ICON 1
RT_VERSION 1
RT_MANIFEST 1
Number of PE resources by language
NEUTRAL 4
PE resources
Debug information
ExifTool file metadata
UninitializedDataSize
0

LinkerVersion
8.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.0.0.0

LanguageCode
Neutral

FileFlagsMask
0x003f

FileDescription
VPN-Pro

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Unicode

InitializedDataSize
72192

EntryPoint
0x1e849e

OriginalFileName
VPN-Pro.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright 2013

FileVersion
1.0.0.0

TimeStamp
2013:06:15 23:41:31+02:00

FileType
Win32 EXE

PEType
PE32

InternalName
VPN-Pro.exe

ProductVersion
1.0.0.0

SubsystemVersion
4.0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CodeSize
1992192

ProductName
VPN-Pro

ProductVersionNumber
1.0.0.0

FileTypeExtension
exe

ObjectFileType
Executable application

AssemblyVersion
1.0.0.0

File identification
MD5 8eda7dfa4ec4ac975bb12d2a3186bbeb
SHA1 b5c49bbbf7499a30110adc94480b3edbc8d6e92b
SHA256 829e137279f691e493c211108b62c8e15b079bd619ba19ad388450878e0585d0
ssdeep
49152:IaaQPYYOQrEtAVy5/r56qfxpAFhrlfteP1BD4EaaQ:TaQPYYd8EOAqfxpehrdtePL4naQ

authentihash 8edae25e50e1873573212185dc80e8ed9a5c55cef66cea88a494fc0c92eb3e63
imphash f34d5f2d4577ed6d9ceec516c1f5a744
File size 2.0 MB ( 2065408 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic CIL Executable (.NET, Mono, etc.) (44.5%)
Win32 Executable MS Visual C++ (generic) (18.9%)
Win64 Executable (generic) (16.8%)
Windows screen saver (7.9%)
Win32 Dynamic Link Library (generic) (4.0%)
Tags
peexe assembly

VirusTotal metadata
First submission 2013-06-15 22:45:33 UTC ( 5 years, 6 months ago )
Last submission 2018-12-15 14:52:51 UTC ( 1 day ago )
File names 8eda7dfa4ec4ac975bb12d2a3186bbeb.exe
829E137279F691E493C211108B62C8E15B079BD619BA19AD388450878E0585D0.exe
VPN-Pro.exe
VPN-Pro.exe
8EDA7DFA4EC4AC975BB12D2A3186BBEB
file-5932656_exe
879514db-811a-411b-9332-9255828b4987
VPN-Pro.exe
a1664fe7-4bba-459e-9806-f8adf431d59b
vpn-pro.exe
VPN-Pro.exe
8eda7dfa4ec4ac975bb12d2a3186bbeb
Trojan-Ransom.Win32.Blocker.bkfc .exe
VPN-Pro.exe
05.exe
VPN-Pro.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!