× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 979dad2f595fc9cab790efbb86defbcdb30602c8dcf2865378228c4c1e388a6f
File name: 68305.exe
Detection ratio: 14 / 66
Analysis date: 2018-05-15 11:36:16 UTC ( 10 months, 2 weeks ago ) View latest
Antivirus Result Update
Avast FileRepMalware 20180515
AVG FileRepMalware 20180515
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9986 20180511
Cylance Unsafe 20180515
Endgame malicious (high confidence) 20180507
Fortinet W32/GenKryptik.BMLF!tr 20180515
Sophos ML heuristic 20180503
Microsoft Trojan:Win32/Azden.B!cl 20180515
Palo Alto Networks (Known Signatures) generic.ml 20180515
Qihoo-360 HEUR/QVM20.1.2DDB.Malware.Gen 20180515
SentinelOne (Static ML) static engine - malicious 20180225
Symantec ML.Attribute.HighConfidence 20180514
TotalDefense Win32/FakeMS.WOCR 20180515
Webroot W32.Trojan.Gen 20180515
Ad-Aware 20180515
AegisLab 20180515
AhnLab-V3 20180515
Alibaba 20180515
ALYac 20180515
Antiy-AVL 20180515
Arcabit 20180515
Avast-Mobile 20180514
Avira (no cloud) 20180515
AVware 20180428
Babable 20180406
BitDefender 20180515
Bkav 20180515
CAT-QuickHeal 20180515
ClamAV 20180515
CMC 20180515
Comodo 20180515
CrowdStrike Falcon (ML) 20180202
Cybereason None
Cyren 20180515
DrWeb 20180515
eGambit 20180515
Emsisoft 20180515
ESET-NOD32 20180515
F-Prot 20180515
F-Secure 20180515
GData 20180515
Ikarus 20180515
Jiangmin 20180515
K7AntiVirus 20180515
K7GW 20180515
Kaspersky 20180515
Kingsoft 20180515
Malwarebytes 20180515
MAX 20180515
McAfee 20180515
McAfee-GW-Edition 20180515
eScan 20180515
NANO-Antivirus 20180515
nProtect 20180515
Panda 20180514
Rising 20180515
Sophos AV 20180515
SUPERAntiSpyware 20180515
Symantec Mobile Insight 20180515
Tencent 20180515
TheHacker 20180509
TrendMicro 20180515
TrendMicro-HouseCall 20180515
Trustlook 20180515
VBA32 20180514
VIPRE 20180515
ViRobot 20180515
Yandex 20180513
Zillya 20180514
ZoneAlarm by Check Point 20180515
Zoner 20180514
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
File version 14.0.23026.0 built by: WCSETUP
Description MFC Language Specific Resources
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2028-12-25 04:27:37
Entry Point 0x00002033
Number of sections 7
PE sections
PE imports
NetGetAnyDCName
LogicalToPhysicalPoint
Number of PE resources by type
RT_STRING 60
RT_DIALOG 27
RT_MENU 1
RT_VERSION 1
Struct(240) 1
Number of PE resources by language
JAPANESE DEFAULT 90
PE resources
ExifTool file metadata
UninitializedDataSize
0

LinkerVersion
12.0

ImageVersion
0.0

FileVersionNumber
14.0.23026.0

LanguageCode
Japanese

FileFlagsMask
0x003f

FileDescription
MFC Language Specific Resources

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Unicode

InitializedDataSize
225280

EntryPoint
0x2033

MIMEType
application/octet-stream

FileVersion
14.0.23026.0 built by: WCSETUP

TimeStamp
2028:12:24 20:27:37-08:00

FileType
Win32 EXE

PEType
PE32

SubsystemVersion
5.0

OSVersion
5.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Microsoft Corporation

CodeSize
0

FileSubtype
0

ProductVersionNumber
14.0.23026.0

FileTypeExtension
exe

ObjectFileType
Dynamic link library

File identification
MD5 4524b7643e4a954ac8c74a975f3bd753
SHA1 e1bea036a5c4cf2fdede130c4a9d900f3a4379d3
SHA256 979dad2f595fc9cab790efbb86defbcdb30602c8dcf2865378228c4c1e388a6f
ssdeep
1536:FnL3Wle9vAPxSsA8B3ugFCWpZe2O2SJc+1KrkBBlZM/xSr9uGOb:Z7WMYPYsx+gFNp4LK4tZmSTO

authentihash fe7c80011697a4eb853dede66597cf6bb36218273e93dcee494f2dc358d4d87b
imphash de25658a6f3261e8174d7e11c005c05e
File size 228.0 KB ( 233472 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Dynamic Link Library (generic) (38.4%)
Win32 Executable (generic) (26.3%)
OS/2 Executable (generic) (11.8%)
Generic Win/DOS Executable (11.6%)
DOS Executable Generic (11.6%)
Tags
peexe

VirusTotal metadata
First submission 2018-05-15 11:36:16 UTC ( 10 months, 2 weeks ago )
Last submission 2018-05-16 10:45:29 UTC ( 10 months, 2 weeks ago )
File names 47873.exe
0579633.exe
998675.exe
57622.exe
80993.exe
694289.exe
144914.exe
6911439.exe
16509036.exe
68305.exe
5528829.exe
224341.exe
9723651.exe
4675012.exe
7028701.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!