× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 9850aac339fe4fca71ca9603392b9c06766ac8dc41b9d497252d6fe6521bb837
File name: united.exe
Detection ratio: 2 / 55
Analysis date: 2015-07-22 12:43:00 UTC ( 3 years, 10 months ago ) View latest
Antivirus Result Update
Bkav HW32.Packed.CB50 20150722
Qihoo-360 HEUR/QVM20.1.Malware.Gen 20150722
Ad-Aware 20150722
AegisLab 20150722
Yandex 20150721
AhnLab-V3 20150722
Alibaba 20150722
ALYac 20150722
Antiy-AVL 20150722
Arcabit 20150722
Avast 20150722
AVG 20150721
Avira (no cloud) 20150722
AVware 20150722
Baidu-International 20150722
BitDefender 20150722
ByteHero 20150722
CAT-QuickHeal 20150722
ClamAV 20150721
Comodo 20150722
Cyren 20150722
DrWeb 20150722
Emsisoft 20150722
ESET-NOD32 20150722
F-Prot 20150722
F-Secure 20150722
Fortinet 20150722
GData 20150722
Ikarus 20150722
Jiangmin 20150720
K7AntiVirus 20150722
K7GW 20150722
Kaspersky 20150722
Kingsoft 20150722
Malwarebytes 20150722
McAfee 20150722
McAfee-GW-Edition 20150722
Microsoft 20150722
eScan 20150722
NANO-Antivirus 20150722
nProtect 20150722
Panda 20150722
Rising 20150722
Sophos AV 20150722
SUPERAntiSpyware 20150722
Symantec 20150722
Tencent 20150722
TheHacker 20150721
TrendMicro 20150722
TrendMicro-HouseCall 20150722
VBA32 20150722
VIPRE 20150722
ViRobot 20150722
Zillya 20150722
Zoner 20150722
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
LexSoft©. All rights reserved.

Product LexSoft
File version 1.7
Description LexSoft
Comments LexSoft Beta Version
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2015-06-18 10:05:43
Entry Point 0x00001500
Number of sections 4
PE sections
PE imports
Polygon
CreateFontIndirectW
CreatePen
GetTextMetricsA
CombineRgn
Rectangle
GetDeviceCaps
LineTo
GetTextExtentExPointA
DeleteDC
SetBkMode
GetTextExtentExPointW
GetObjectW
BitBlt
CreateDIBSection
SetTextColor
CreatePatternBrush
GetObjectA
ExtTextOutW
IntersectClipRect
CreateBitmap
MoveToEx
GetStockObject
ExtTextOutA
SetTextAlign
RoundRect
CreateCompatibleDC
StretchBlt
GetNearestColor
CreateRectRgn
GetTextExtentPoint32W
GetTextExtentPoint32A
CreateCompatibleBitmap
CreateSolidBrush
SelectObject
SetBkColor
DeleteObject
Ellipse
OleUninitialize
CLSIDFromProgID
OleInitialize
RegisterDragDrop
CoCreateInstance
DoDragDrop
RevokeDragDrop
LoadStringW
OpenInputDesktop
SystemParametersInfoA
Number of PE resources by type
RT_MANIFEST 1
RT_DIALOG 1
RT_VERSION 1
Number of PE resources by language
NEUTRAL 3
PE resources
ExifTool file metadata
LegalTrademarks
LexSoft . 2014

UninitializedDataSize
0

Comments
LexSoft Beta Version

LinkerVersion
6.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.7.0.0

LanguageCode
English (U.S.)

FileFlagsMask
0x0000

CharacterSet
Windows, Latin1

InitializedDataSize
6656

EntryPoint
0x1500

MIMEType
application/octet-stream

LegalCopyright
LexSoft . All rights reserved.

FileVersion
1.7

TimeStamp
2015:06:18 11:05:43+01:00

FileType
Win32 EXE

PEType
PE32

SubsystemVersion
4.0

ProductVersion
1.7.0.0

FileDescription
LexSoft

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Proposition Inc.

CodeSize
481792

ProductName
LexSoft

ProductVersionNumber
1.7.0.0

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 605905df205b6c266856990a49abdfef
SHA1 bc5b3aac472e9c2c41f05e8a061fac6fe398f19b
SHA256 9850aac339fe4fca71ca9603392b9c06766ac8dc41b9d497252d6fe6521bb837
ssdeep
6144:bQsIaTwK1k8igwNECl2Iv631wXYCYSSKsm2lRRWqat6rwDoMJVf6D33Qr2KmMBE9:2Aw0lZ+6aITTm2UPtxf6Dw7mqE

authentihash 1f6d9b29573ede424fe260d83bbd15f0b5240d920d0974a86cd0380ffa24c53b
imphash 63b2ea2ad8650e75e23268c425a2e87e
File size 478.0 KB ( 489472 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ 4.x (88.6%)
Win32 Dynamic Link Library (generic) (4.3%)
Win32 Executable (generic) (2.9%)
Win16/32 Executable Delphi generic (1.3%)
Generic Win/DOS Executable (1.3%)
Tags
peexe

VirusTotal metadata
First submission 2015-07-22 11:38:15 UTC ( 3 years, 10 months ago )
Last submission 2015-11-09 17:46:01 UTC ( 3 years, 6 months ago )
File names united.exe
united_exe
mvssdfbofvillmu.exe
tWgoNoaIiCQtSuO.exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Runtime DLLs