× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: a28a81955991951f77fe5d3e625309436e79a6f209084ff2ae5efc733cb473be
File name: a28a81955991951f77fe5d3e625309436e79a6f209084ff2ae5efc733cb473be
Detection ratio: 31 / 42
Analysis date: 2012-05-26 13:25:45 UTC ( 6 years, 12 months ago ) View latest
Antivirus Result Update
AntiVir TR/Crypt.XPACK.Gen 20120526
Antiy-AVL Trojan/win32.agent.gen 20120526
Avast Win32:Gamarue-AT [Trj] 20120526
AVG Generic28.BBBL 20120526
BitDefender Gen:Trojan.Heur.GZ.aeW@b4gW5pn 20120526
ByteHero Virus.Win32.Heur.d 20120522
CAT-QuickHeal (Suspicious) - DNAScan 20120526
Comodo UnclassifiedMalware 20120526
DrWeb BackDoor.Andromeda.22 20120526
Emsisoft Trojan.Win32.Spy!IK 20120526
F-Secure Gen:Trojan.Heur.GZ.aeW@b4gW5pn 20120526
Fortinet W32/Kryptik.AFJS 20120526
GData Gen:Trojan.Heur.GZ.aeW@b4gW5pn 20120526
Ikarus Trojan.Win32.Spy 20120526
Jiangmin Trojan/Generic.adbex 20120526
K7AntiVirus Riskware 20120525
Kaspersky HEUR:Trojan.Win32.Generic 20120526
McAfee Generic.dx!b2fp 20120526
McAfee-GW-Edition Generic.dx!b2fp 20120526
Microsoft Worm:Win32/Gamarue.F 20120526
NOD32 a variant of Win32/Kryptik.AFJS 20120526
Norman W32/Troj_Generic.BOENE 20120526
Panda Generic Malware 20120526
PCTools HeurEngine.ZeroDayThreat 20120522
Rising Trojan.Win32.Generic.12C4D090 20120524
Symantec Suspicious.Graybird.1 20120526
TheHacker Trojan/Kryptik.afjs 20120526
TrendMicro TROJ_GEN.R29C7E6 20120526
TrendMicro-HouseCall TROJ_GEN.R29C7E6 20120526
VBA32 Malware-Cryptor.Inject.gen.2 20120525
VIPRE Trojan.Win32.Generic!BT 20120526
AhnLab-V3 20120526
ClamAV 20120526
Commtouch 20120526
eSafe 20120524
F-Prot 20120526
nProtect 20120526
Sophos AV 20120526
SUPERAntiSpyware 20120526
TotalDefense 20120525
ViRobot 20120526
VirusBuster 20120525
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2012-04-28 14:07:21
Entry Point 0x0000141C
Number of sections 1
PE sections
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

FileTypeExtension
exe

TimeStamp
2012:04:28 07:07:21-07:00

FileType
Win32 EXE

PEType
PE32

CodeSize
12800

LinkerVersion
5.12

ImageFileCharacteristics
No relocs, Executable, No line numbers, No symbols, 32-bit

EntryPoint
0x141c

InitializedDataSize
0

SubsystemVersion
4.0

ImageVersion
0.0

OSVersion
4.0

UninitializedDataSize
0

File identification
MD5 ba8da4aaf1fea02f62125f046b1e7df0
SHA1 8bf881385fcab6af72510f2ba817f20efdce18f3
SHA256 a28a81955991951f77fe5d3e625309436e79a6f209084ff2ae5efc733cb473be
ssdeep
384:H0cNS0ndEjntWRvQb9YgtG0zJrmDtuWGrs72Nnm:3SntevyYiPEGrswn

authentihash 134bc5c345a17e19247af76bf48f96d00e291a411992f3c110e5cbd3025fae87
File size 13.0 KB ( 13312 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Dynamic Link Library (generic) (38.3%)
Win32 Executable (generic) (26.2%)
OS/2 Executable (generic) (11.8%)
Generic Win/DOS Executable (11.6%)
DOS Executable Generic (11.6%)
Tags
peexe

VirusTotal metadata
First submission 2012-05-02 19:34:25 UTC ( 7 years ago )
Last submission 2019-02-01 06:15:05 UTC ( 3 months, 3 weeks ago )
File names 8bf881385fcab6af72510f2ba817f20efdce18f3.bin
a28a81955991951f77fe5d3e625309436e79a6f209084ff2ae5efc733cb473be.bin
BA8DA4AAF1FEA02F62125F046B1E7DF0
a28a81955991951f77fe5d3e625309436e79a6f209084ff2ae5efc733cb473be
Photoshop_CS5.1_Keygen.exe
Andromeda.exe
filename
exe.ex
"Photoshop_CS5.1_Keygen.exe"
Bin.exe
BCCF2AE2002A8B0E341300347A9AC20029DE9272.exe
660745c0.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!