× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: d0048ecf217804fa1ae0df3a3d5305e4c970694b84aec96564234f71dbf812b5
File name: 8fc87364b0b8ef198836274b0c4aca82d3fab6b3
Detection ratio: 31 / 68
Analysis date: 2018-09-09 05:01:39 UTC ( 5 months, 1 week ago ) View latest
Antivirus Result Update
Ad-Aware Trojan.GenericKD.31198396 20180909
Arcabit Trojan.Generic.D1DC0CBC 20180909
Avast FileRepMalware 20180909
AVG FileRepMalware 20180909
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9747 20180906
BitDefender Trojan.GenericKD.31198396 20180909
Cylance Unsafe 20180909
Cyren W32/Trojan.CZGQ-8387 20180909
Emsisoft Trojan.GenericKD.31198396 (B) 20180909
Endgame malicious (high confidence) 20180730
ESET-NOD32 a variant of Win32/GenKryptik.CKNN 20180908
F-Secure Trojan.GenericKD.31198396 20180909
GData Win32.Trojan-Spy.Emotet.TB 20180909
Ikarus Win32.Outbreak 20180908
Sophos ML heuristic 20180717
Kaspersky Trojan-Banker.Win32.Emotet.bczq 20180909
Malwarebytes Trojan.Emotet 20180909
McAfee RDN/Generic.grp 20180909
McAfee-GW-Edition Artemis!Trojan 20180909
Microsoft Trojan:Win32/Casdet!rfn 20180908
eScan Trojan.GenericKD.31198396 20180909
Palo Alto Networks (Known Signatures) generic.ml 20180909
Panda Trj/GdSda.A 20180908
Qihoo-360 HEUR/QVM20.1.BAD1.Malware.Gen 20180909
Rising Trojan.Emotet!8.B95 (CLOUD) 20180909
Sophos AV Mal/Generic-S 20180909
Symantec Packed.Generic.517 20180908
TrendMicro TROJ_GEN.USI818 20180909
TrendMicro-HouseCall TROJ_GEN.USI818 20180909
Webroot W32.Trojan.Emotet 20180909
ZoneAlarm by Check Point Trojan-Banker.Win32.Emotet.bczq 20180909
AegisLab 20180909
AhnLab-V3 20180908
Alibaba 20180713
ALYac 20180909
Antiy-AVL 20180906
Avast-Mobile 20180909
Avira (no cloud) 20180908
AVware 20180909
Babable 20180907
Bkav 20180906
CAT-QuickHeal 20180908
ClamAV 20180909
CMC 20180908
Comodo 20180909
CrowdStrike Falcon (ML) 20180723
Cybereason 20180225
DrWeb 20180909
eGambit 20180909
F-Prot 20180909
Fortinet 20180909
Jiangmin 20180909
K7AntiVirus 20180908
K7GW 20180909
Kingsoft 20180909
MAX 20180909
NANO-Antivirus 20180909
SentinelOne (Static ML) 20180830
SUPERAntiSpyware 20180907
Symantec Mobile Insight 20180905
TACHYON 20180909
Tencent 20180909
TheHacker 20180907
TotalDefense 20180908
Trustlook 20180909
VBA32 20180907
VIPRE 20180909
ViRobot 20180909
Yandex 20180908
Zillya 20180908
Zoner 20180908
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2001 Hewlett-Packard Company

Product Hewlett-Packard Master Monitor, WINNT version
Original name MSTRMON
Internal name MSTRMON
File version 10.00.14
Description Win32 Master Monitor
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2018-09-08 22:15:52
Entry Point 0x0001D72C
Number of sections 5
PE sections
PE imports
CreateRestrictedToken
RevertToSelf
LookupPrivilegeValueW
TreeResetNamedSecurityInfoW
SetSecurityDescriptorSacl
CryptInstallDefaultContext
JetCommitTransaction
GetTextExtentExPointA
CreateMetaFileA
GetPaletteEntries
CreateSolidBrush
GetEnhMetaFilePaletteEntries
EnumFontsA
ImmSimulateHotKey
ImmSetCompositionWindow
CallNamedPipeW
FindCloseChangeNotification
CreateSemaphoreA
GetModuleHandleA
OpenSemaphoreA
GetNamedPipeHandleStateA
UnhandledExceptionFilter
CopyFileA
GetSystemWow64DirectoryA
GetDefaultCommConfigA
VerifyScripts
acmDriverEnum
ICCompressorFree
DsBindWithCredA
CreateTypeLib
SafeArrayLock
glMapGrid1f
RasSetCustomAuthDataW
I_RpcSessionStrictContextHandle
UuidToStringW
RpcBindingSetAuthInfoExA
SetupDiEnumDeviceInfo
SetupDiGetClassInstallParamsA
SetupDiBuildClassInfoListExW
SetupGetLineTextA
SetupQueueCopyIndirectW
StrToIntExW
SHCopyKeyW
QuerySecurityPackageInfoW
IsClipboardFormatAvailable
GetCaretBlinkTime
GetParent
TranslateAcceleratorA
MonitorFromPoint
ModifyMenuA
TrackPopupMenuEx
FtpOpenFileA
PlaySoundW
EndDocPrinter
GetPrinterW
DocumentPropertiesW
WTHelperGetProvSignerFromChain
fprintf
CoGetObject
Number of PE resources by type
RT_VERSION 1
Number of PE resources by language
ENGLISH US 1
PE resources
Debug information
ExifTool file metadata
CodeSize
0

SubsystemVersion
5.0

LinkerVersion
12.1

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
10.0.0.14

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

FileDescription
Win32 Master Monitor

ImageFileCharacteristics
No relocs, Executable, 32-bit

CharacterSet
Windows, Latin1

InitializedDataSize
90112

PrivateBuild
This is a Release version!

EntryPoint
0x1d72c

OriginalFileName
MSTRMON

MIMEType
application/octet-stream

LegalCopyright
Copyright 2001 Hewlett-Packard Company

FileVersion
10.00.14

TimeStamp
2018:09:08 15:15:52-07:00

FileType
Win32 EXE

PEType
PE32

InternalName
MSTRMON

ProductVersion
10.00.14

UninitializedDataSize
1006425862

OSVersion
5.0

FileOS
Windows 32-bit

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Hewlett-Packard

LegalTrademarks
All Rights Reserved.

ProductName
Hewlett-Packard Master Monitor, WINNT version

ProductVersionNumber
10.0.0.14

FileTypeExtension
exe

ObjectFileType
Dynamic link library

File identification
MD5 a8b85b3db004cca6a07745d2481410e4
SHA1 8fc87364b0b8ef198836274b0c4aca82d3fab6b3
SHA256 d0048ecf217804fa1ae0df3a3d5305e4c970694b84aec96564234f71dbf812b5
ssdeep
6144:vmRl8pQrt4FER0GSZfGU/Xn+BluMrPUui:vmTh4FZDpGUsluMrPri

authentihash a28fc7fd1f7abc8944b7aea2c7d2f334003c24980e81c8397265959039413f99
imphash 4d70b8aa1a6ff04578ded49abe1feb09
File size 304.0 KB ( 311296 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID OS/2 Executable (generic) (33.6%)
Generic Win/DOS Executable (33.1%)
DOS Executable Generic (33.1%)
Tags
peexe

VirusTotal metadata
First submission 2018-09-08 15:23:08 UTC ( 5 months, 1 week ago )
Last submission 2018-09-09 00:17:21 UTC ( 5 months, 1 week ago )
File names 10880936.exe
MSTRMON
909346.exe
8.exe
2225.exe
8fc87364b0b8ef198836274b0c4aca82d3fab6b3
Advanced heuristic and reputation engines
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!