× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: a64ccf37e51e8692945f62718b704e1c1638f3d53566c68929eb58c70a846df6
File name: MediaGet.exe
Detection ratio: 10 / 40
Analysis date: 2012-05-19 13:07:44 UTC ( 6 years, 6 months ago ) View latest
Antivirus Result Update
AntiVir Adware/Mediaget.H 20120518
Antiy-AVL Downloader/Win32.MediaGet.gen 20120519
AVG Suspicion: unknown virus 20120519
ClamAV W32.Adware.Downloader.Mediaget 20120519
Commtouch W32/MediaGet.A.gen!Eldorado 20120519
eTrust-Vet Win32/Mediaget.D!genus 20120517
F-Prot W32/MediaGet.A.gen!Eldorado 20120519
K7AntiVirus Unwanted-Program 20120518
Kaspersky not-a-virus:Downloader.Win32.MediaGet.dqy 20120519
VBA32 Downloader.MediaGet.dqy 20120518
AhnLab-V3 20120518
Avast 20120519
BitDefender 20120519
ByteHero 20120515
CAT-QuickHeal 20120518
Comodo 20120519
DrWeb 20120519
Emsisoft 20120519
eSafe 20120516
F-Secure 20120519
Fortinet 20120519
GData 20120519
Ikarus 20120519
Jiangmin 20120519
McAfee 20120519
McAfee-GW-Edition 20120518
Microsoft 20120519
NOD32 20120519
Norman 20120519
nProtect 20120519
PCTools 20120519
Rising 20120518
SUPERAntiSpyware 20120519
Symantec 20120519
TheHacker 20120517
TrendMicro 20120519
TrendMicro-HouseCall 20120518
VIPRE 20120519
ViRobot 20120519
VirusBuster 20120518
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
Packers identified
Command UPX
F-PROT UPX
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2012-04-24 08:44:31
Entry Point 0x00155070
Number of sections 3
PE sections
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

TimeStamp
2012:04:24 10:44:31+02:00

FileType
Win32 EXE

PEType
PE32

CodeSize
335872

LinkerVersion
9.0

Warning
Error processing PE data dictionary

EntryPoint
0x155070

InitializedDataSize
352256

SubsystemVersion
5.0

ImageVersion
0.0

OSVersion
5.0

UninitializedDataSize
1060864

File identification
MD5 b292c7fe46a89ae1b440259e72408046
SHA1 41cb57737ecb6e55a74ffb870ad083ed8266d901
SHA256 a64ccf37e51e8692945f62718b704e1c1638f3d53566c68929eb58c70a846df6
ssdeep
12288:j+tQY3u4/30tqXRzueOPrWuZDoZH88fgKxNOMfA33sUKpfcsFmcyouSKhK6udcK6:jGQY+ttqXRNOPrWuOZHHfRXA33OpfPFF

File size 666.1 KB ( 682123 bytes )
File type Win32 EXE
Magic literal
MS-DOS executable PE for MS Windows (GUI) Intel 80386 32-bit, UPX compressed

TrID Generic Win/DOS Executable (49.9%)
DOS Executable Generic (49.8%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.1%)
Tags
upx

VirusTotal metadata
First submission 2012-05-19 13:01:45 UTC ( 6 years, 6 months ago )
Last submission 2012-05-22 16:00:32 UTC ( 6 years, 5 months ago )
File names b292c7fe46a89ae1b440259e72408046
aa
gGX46U9.html
file-3973003_exe
MediaGet.exe
okD2D.sys
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!