× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 8fdfb493983bb94553d9dc9ceb653538f1cfd30ba901470ca81c5a607854716f
File name: 8fdfb493983bb94553d9dc9ceb653538f1cfd30ba901470ca81c5a607854716f
Detection ratio: 48 / 61
Analysis date: 2017-03-30 04:51:15 UTC ( 1 year, 10 months ago ) View latest
Antivirus Result Update
Ad-Aware Gen:Variant.Razy.152462 20170330
AegisLab Troj.W32.Generic!c 20170330
AhnLab-V3 Trojan/Win32.Generic.C1877476 20170329
ALYac Gen:Variant.Razy.152462 20170330
Antiy-AVL Trojan/Win32.AGeneric 20170330
Arcabit Trojan.Razy.D2538E 20170330
Avast Win32:Stealer-DM [Trj] 20170330
AVG Crypt7.RVC 20170330
Avira (no cloud) TR/Crypt.XPACK.Gen 20170330
AVware Trojan.Win32.Generic!BT 20170330
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9699 20170330
BitDefender Gen:Variant.Razy.152462 20170330
CAT-QuickHeal Backdoor.Drixed 20170329
Cyren W32/Trojan.BMZT-1141 20170330
DrWeb Trojan.PWS.Siggen1.63078 20170330
Emsisoft Gen:Variant.Razy.152462 (B) 20170330
Endgame malicious (moderate confidence) 20170329
ESET-NOD32 a variant of Win32/Dridex.AX 20170330
F-Secure Gen:Variant.Razy.152462 20170330
Fortinet W32/Dridex.AX!tr 20170330
GData Gen:Variant.Razy.152462 20170330
Ikarus Trojan.Win32.Dridex 20170329
Sophos ML trojan.win32.vflooder.b 20170203
K7AntiVirus Trojan ( 004feef81 ) 20170329
K7GW Trojan ( 004feef81 ) 20170330
Kaspersky HEUR:Trojan.Win32.Generic 20170330
Malwarebytes Trojan.Dridex 20170330
McAfee Trojan-Dridex!2FCE169F8FA2 20170330
McAfee-GW-Edition BehavesLike.Win32.RAHack.nh 20170330
Microsoft Backdoor:Win32/Drixed 20170330
eScan Gen:Variant.Razy.152462 20170329
NANO-Antivirus Trojan.Win32.Razy.emvbum 20170330
Palo Alto Networks (Known Signatures) generic.ml 20170330
Panda Trj/CI.A 20170329
Qihoo-360 Win32/Trojan.74d 20170330
Rising Malware.Generic.2!tfe (cloud:OaPdZfWqGFT) 20170330
SentinelOne (Static ML) static engine - malicious 20170315
Sophos AV Mal/Behav-238 20170330
SUPERAntiSpyware Trojan.Agent/Gen-Dridex 20170330
Symantec Trojan.Cridex 20170329
Tencent Win32.Trojan.Crypt.Hwdq 20170330
TrendMicro TROJ_GEN.R0C1C0PCL17 20170330
TrendMicro-HouseCall TROJ_GEN.R0C1C0PCL17 20170330
VIPRE Trojan.Win32.Generic!BT 20170330
ViRobot Trojan.Win32.Z.Dridex.100352.A[h] 20170330
Webroot W32.Trojan.Gen 20170330
Yandex Trojan.Agent!ZaJIu2IAzUk 20170327
ZoneAlarm by Check Point HEUR:Trojan.Win32.Generic 20170330
Alibaba 20170330
Bkav 20170329
ClamAV 20170330
CMC 20170330
Comodo 20170330
CrowdStrike Falcon (ML) 20170130
F-Prot 20170330
Jiangmin 20170329
Kingsoft 20170330
nProtect 20170330
Symantec Mobile Insight 20170329
TheHacker 20170330
TotalDefense 20170330
Trustlook 20170330
VBA32 20170329
WhiteArmor 20170327
Zillya 20170329
Zoner 20170330
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2017-03-14 14:01:17
Entry Point 0x000016E0
Number of sections 5
PE sections
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

FileTypeExtension
exe

TimeStamp
2017:03:14 15:01:17+01:00

FileType
Win32 EXE

PEType
PE32

CodeSize
69632

LinkerVersion
10.0

EntryPoint
0x16e0

InitializedDataSize
29696

SubsystemVersion
5.1

ImageVersion
0.0

OSVersion
5.1

UninitializedDataSize
0

File identification
MD5 2fce169f8fa2009c2371d917ebc16ae5
SHA1 061ac49e508ac4fcbc40e66e0efae62e0064de50
SHA256 8fdfb493983bb94553d9dc9ceb653538f1cfd30ba901470ca81c5a607854716f
ssdeep
1536:97ucgH3hph+sZCC6xznK7o3Yv/CWiIoDTAgQVYGGN55IaeXTMY74SFdWiUlmi:XgH3PwPxHG4HHoaeXTj7XciU

authentihash 19e878902be58949b6984d62b0986cae751c05323747afcb50e1b4139523a7e8
File size 98.0 KB ( 100352 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable (generic) (42.7%)
OS/2 Executable (generic) (19.2%)
Generic Win/DOS Executable (18.9%)
DOS Executable Generic (18.9%)
Tags
peexe

VirusTotal metadata
First submission 2017-03-21 08:05:26 UTC ( 1 year, 11 months ago )
Last submission 2017-04-26 17:23:17 UTC ( 1 year, 9 months ago )
File names maski.exe.3136.dr
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!