× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: abe4f980c488a4db468b8134792d8b33661ee5a7cef1599847b697c5dd741df6
File name: Keeper of the seven Keys
Detection ratio: 54 / 65
Analysis date: 2018-04-24 21:02:34 UTC ( 6 months ago )
Antivirus Result Update
Ad-Aware Gen:Heur.JVD.4 20180425
AegisLab Troj.W32.Muref!c 20180425
AhnLab-V3 Trojan/Win32.Gen.R134914 20180425
ALYac Gen:Heur.JVD.4 20180425
Antiy-AVL Trojan/Win32.Muref 20180418
Arcabit Trojan.JVD.4 20180425
Avast Win32:Evo-gen [Susp] 20180425
AVG Win32:Evo-gen [Susp] 20180425
Avira (no cloud) TR/Agent.272664 20180425
AVware Trojan.Win32.Generic!BT 20180425
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9999 20180425
BitDefender Gen:Heur.JVD.4 20180425
Bkav W32.AgentMuref.Trojan 20180424
CAT-QuickHeal VirTool.VBInject.LE3 20180425
Comodo UnclassifiedMalware 20180425
CrowdStrike Falcon (ML) malicious_confidence_90% (D) 20180418
Cylance Unsafe 20180425
Cyren W32/Miuref.C.gen!Eldorado 20180425
DrWeb Trojan.Siggen6.23087 20180425
eGambit PE.Heur.InvalidSig 20180425
Emsisoft Gen:Heur.JVD.4 (B) 20180425
Endgame malicious (high confidence) 20180402
ESET-NOD32 Win32/Boaxxe.BR 20180425
F-Prot W32/Miuref.C.gen!Eldorado 20180425
F-Secure Gen:Heur.JVD.4 20180425
Fortinet W32/Boaxxe.BR!tr 20180425
GData Gen:Heur.JVD.4 20180425
Ikarus Trojan.Win32.Boaxxe 20180425
Sophos ML heuristic 20180120
Jiangmin Trojan/Muref.q 20180425
K7AntiVirus Trojan ( 004b6a031 ) 20180425
K7GW Trojan ( 004b6a031 ) 20180425
Kaspersky HEUR:Trojan.Win32.Generic 20180425
MAX malware (ai score=100) 20180425
McAfee Miuref-FAWG!F93F39F39DC5 20180425
Microsoft Trojan:Win32/Miuref.F 20180425
eScan Gen:Heur.JVD.4 20180425
NANO-Antivirus Trojan.Win32.Muref.ediotq 20180425
Panda Trj/Genetic.gen 20180425
Qihoo-360 HEUR/QVM03.0.Malware.Gen 20180425
Rising Malware.Undefined!8.C (TFE:3:jfQ2RdKMoJF) 20180425
SentinelOne (Static ML) static engine - malicious 20180225
Sophos AV Mal/Generic-S 20180425
Symantec Trojan.Gen 20180425
Tencent Win32.Trojan.Inject.Auto 20180425
TheHacker Trojan/Boaxxe.br 20180425
TotalDefense Win32/Miuref.dFIcPPC 20180425
VBA32 Trojan.Muref 20180425
VIPRE Trojan.Win32.Generic!BT 20180425
Webroot W32.Rogue.Gen 20180425
Yandex Trojan.Muref! 20180425
Zillya Trojan.Muref.Win32.55 20180425
ZoneAlarm by Check Point HEUR:Trojan.Win32.Generic 20180425
Zoner Trojan.Boaxxe.BR 20180425
Alibaba 20180425
Avast-Mobile 20180425
ClamAV 20180425
CMC 20180425
Cybereason None
Kingsoft 20180425
Malwarebytes 20180425
nProtect 20180425
Palo Alto Networks (Known Signatures) 20180425
SUPERAntiSpyware 20180425
Symantec Mobile Insight 20180424
TrendMicro 20180425
TrendMicro-HouseCall 20180425
Trustlook 20180425
ViRobot 20180425
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Keeper of the seven Keys

Product Keeper of the seven Keys
Original name Keeper of the seven Keys.exe
Internal name Keeper of the seven Keys
File version 8.06.0006
Description Keeper of the seven Keys
Comments Keeper of the seven Keys
Signature verification The digital signature of the object did not verify.
Signing date 11:24 PM 4/25/2018
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2014-11-10 09:02:51
Entry Point 0x000025FC
Number of sections 3
PE sections
Overlays
MD5 833755013dd0e5dbe0622da1ca7f11c6
File type data
Offset 266240
Size 6424
Entropy 7.32
PE imports
_adj_fdiv_m32
__vbaChkstk
__vbaFpUI1
EVENT_SINK_Release
__vbaAryLock
__vbaGenerateBoundsError
_allmul
__vbaI4Abs
Ord(579)
_adj_fdivr_m64
__vbaAryUnlock
_adj_fprem
Ord(558)
__vbaR4Var
__vbaObjSetAddref
__vbaStrVarVal
_adj_fpatan
EVENT_SINK_AddRef
Ord(714)
Ord(674)
_adj_fdiv_m32i
__vbaStrCopy
__vbaExceptHandler
__vbaSetSystemError
__vbaFreeVarList
__vbaRedim
DllFunctionCall
__vbaFPException
__vbaStrVarMove
_adj_fdivr_m16i
__vbaUbound
_CIsin
Ord(563)
_adj_fdiv_r
Ord(100)
__vbaDerefAry1
Ord(634)
__vbaFreeVar
Ord(519)
Ord(561)
_adj_fdiv_m64
__vbaFreeObj
__vbaHresultCheckObj
_CIsqrt
Ord(515)
_CIlog
Ord(530)
_CIcos
EVENT_SINK_QueryInterface
_adj_fptan
Ord(577)
_CItan
Ord(581)
__vbaI4Var
Ord(613)
__vbaVarMove
__vbaErrorOverflow
_CIatan
__vbaNew2
__vbaOnError
_adj_fdivr_m32i
Ord(631)
__vbaAryDestruct
_CIexp
__vbaStrMove
_adj_fprem1
_adj_fdivr_m32
__vbaStrCat
__vbaFreeStrList
__vbaFpI4
Ord(598)
__vbaFreeStr
_adj_fdiv_m16i
Ord(655)
Number of PE resources by type
RT_ICON 9
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 10
CHINESE TRADITIONAL 1
PE resources
ExifTool file metadata
LegalTrademarks
Keeper of the seven Keys

SubsystemVersion
4.0

Comments
Keeper of the seven Keys

LinkerVersion
6.0

ImageVersion
8.6

FileSubtype
0

FileVersionNumber
8.6.0.6

LanguageCode
Chinese (Traditional)

FileFlagsMask
0x0000

FileDescription
Keeper of the seven Keys

CharacterSet
Unicode

InitializedDataSize
45056

EntryPoint
0x25fc

OriginalFileName
Keeper of the seven Keys.exe

MIMEType
application/octet-stream

LegalCopyright
Keeper of the seven Keys

FileVersion
8.06.0006

TimeStamp
2014:11:10 09:02:51+00:00

FileType
Win32 EXE

PEType
PE32

InternalName
Keeper of the seven Keys

ProductVersion
8.06.0006

UninitializedDataSize
0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
The Eraser Project

CodeSize
233472

ProductName
Keeper of the seven Keys

ProductVersionNumber
8.6.0.6

FileTypeExtension
exe

ObjectFileType
Executable application

Compressed bundles
File identification
MD5 f93f39f39dc5162f9e310648022d6f40
SHA1 ec2bce2c5f6bc30f950e4aa34947cd61646a6f9a
SHA256 abe4f980c488a4db468b8134792d8b33661ee5a7cef1599847b697c5dd741df6
ssdeep
3072:hjTUqFBT0IjtgIRsW5ihBmZ1+NavxK/cSTOhyUs6ED6cj3qNou9X98CO1aD:hvTz0IGEs9hS9HSTS8j3q6uP1iaD

authentihash 4712a3b167cede1efe24337a2542a7e8e815ca2bb1b223f31f3c994e1bdee92d
imphash ba33ebe2f5adcb3af73cb39db2712002
File size 266.3 KB ( 272664 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable Microsoft Visual Basic 6 (82.7%)
Win32 Dynamic Link Library (generic) (6.6%)
Win32 Executable (generic) (4.5%)
OS/2 Executable (generic) (2.0%)
Generic Win/DOS Executable (2.0%)
Tags
peexe overlay

VirusTotal metadata
First submission 2015-02-16 20:09:26 UTC ( 3 years, 8 months ago )
Last submission 2018-04-24 21:02:34 UTC ( 6 months ago )
File names virussign.com_f93f39f39dc5162f9e310648022d6f40.vir
bG5ggL.png
VirusShare_f93f39f39dc5162f9e310648022d6f40
Keeper of the seven Keys
zEoBHuUv.exe
Olive.bin
Keeper of the seven Keys.exe
pQYvh.exe
f93f39f39dc5162f9e310648022d6f40.virobj
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!