| SHA256: | d3ff71862b4bbe4364e9769762e3f83e53fc2f68398cb41ebb719cb48579900e |
| File name: | LOKI_EDITOR_1.2.3.exe |
| Detection ratio: | 1 / 61 |
| Analysis date: | 2017-04-15 09:19:47 UTC ( 6 months, 3 weeks ago ) View latest |
| Antivirus | Result | Update |
|---|---|---|
| AegisLab | Malware.Gen!c | 20170414 |
| Ad-Aware | 20170415 | |
| AhnLab-V3 | 20170414 | |
| Alibaba | 20170415 | |
| ALYac | 20170415 | |
| Antiy-AVL | 20170415 | |
| Arcabit | 20170415 | |
| Avast | 20170415 | |
| AVG | 20170415 | |
| Avira (no cloud) | 20170415 | |
| AVware | 20170410 | |
| Baidu | 20170414 | |
| BitDefender | 20170415 | |
| Bkav | 20170415 | |
| CAT-QuickHeal | 20170415 | |
| ClamAV | 20170415 | |
| CMC | 20170415 | |
| Comodo | 20170415 | |
| CrowdStrike Falcon (ML) | 20170130 | |
| Cyren | 20170415 | |
| DrWeb | 20170415 | |
| Emsisoft | 20170415 | |
| Endgame | 20170413 | |
| ESET-NOD32 | 20170415 | |
| F-Prot | 20170415 | |
| F-Secure | 20170415 | |
| Fortinet | 20170415 | |
| GData | 20170415 | |
| Ikarus | 20170415 | |
| Sophos ML | 20170413 | |
| Jiangmin | 20170415 | |
| K7AntiVirus | 20170415 | |
| K7GW | 20170415 | |
| Kaspersky | 20170415 | |
| Kingsoft | 20170415 | |
| Malwarebytes | 20170415 | |
| McAfee | 20170415 | |
| McAfee-GW-Edition | 20170415 | |
| Microsoft | 20170415 | |
| eScan | 20170415 | |
| NANO-Antivirus | 20170415 | |
| nProtect | 20170415 | |
| Palo Alto Networks (Known Signatures) | 20170415 | |
| Panda | 20170415 | |
| Qihoo-360 | 20170415 | |
| Rising | 20170415 | |
| SentinelOne (Static ML) | 20170330 | |
| Sophos AV | 20170415 | |
| SUPERAntiSpyware | 20170415 | |
| Symantec | 20170414 | |
| Symantec Mobile Insight | 20170414 | |
| Tencent | 20170415 | |
| TheHacker | 20170412 | |
| TrendMicro | 20170415 | |
| TrendMicro-HouseCall | 20170415 | |
| Trustlook | 20170415 | |
| VBA32 | 20170414 | |
| VIPRE | 20170415 | |
| ViRobot | 20170415 | |
| Webroot | 20170415 | |
| WhiteArmor | 20170409 | |
| Yandex | 20170414 | |
| Zillya | 20170414 | |
| ZoneAlarm by Check Point | 20170415 | |
| Zoner | 20170415 |
The file being studied is a Portable Executable file!
More specifically, it is a Win32 EXE
file
for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2009
Product LOKI_EDITOR
Original name LOKI_EDITOR.exe
Internal name LOKI_EDITOR.exe
File version 1.1.0.0
Description LOKI_EDITOR
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2009-02-11 15:36:25
Entry Point 0x0006997E
Number of sections 3
.NET details
Module Version ID
076f6694-a35a-48ec-91b3-ccfb1266febf
TypeLib ID
008a11f7-51e3-431c-aba3-a9b086902f4a
PE sections
PE imports
Number of PE resources by type
RT_ICON 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 3
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
4.0
LinkerVersion
8.0
ImageVersion
0.0
ProductName
LOKI_EDITOR
FileVersionNumber
1.1.0.0
UninitializedDataSize
0
LanguageCode
Neutral
FileFlagsMask
0x003f
CharacterSet
Unicode
InitializedDataSize
12288
FileTypeExtension
exe
OriginalFileName
LOKI_EDITOR.exe
MIMEType
application/octet-stream
Subsystem
Windows GUI
FileVersion
1.1.0.0
TimeStamp
2009:02:11 16:36:25+01:00
FileType
Win32 EXE
PEType
PE32
InternalName
LOKI_EDITOR.exe
ProductVersion
1.1.0.0
FileDescription
LOKI_EDITOR
OSVersion
4.0
FileOS
Win32
LegalCopyright
Copyright 2009
MachineType
Intel 386 or later, and compatibles
CompanyName
ANDREY Z5Z
CodeSize
425984
FileSubtype
0
ProductVersionNumber
1.1.0.0
EntryPoint
0x6997e
ObjectFileType
Executable application
AssemblyVersion
1.1.0.0
Compressed bundles
File identification
MD5 3f463e681fecd89c6f29f0d1584abe5f
SHA1 ff02d9076237a9821150e11c554b8090962d1d40
SHA256 d3ff71862b4bbe4364e9769762e3f83e53fc2f68398cb41ebb719cb48579900e
ssdeep
6144:2p5XGQduaErzjpK0gDvtUKvlLur6SuoiG3bt2731aEd:qX8Xjk82pd
File size
432.0 KB ( 442368 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly
| TrID |
Generic CIL Executable (.NET, Mono, etc.) (70.7%) Windows screen saver (12.6%) Win32 Dynamic Link Library (generic) (6.3%) Win32 Executable (generic) (4.3%) Win16/32 Executable Delphi generic (2.0%) |
Tags
peexe
assembly
VirusTotal metadata
First submission
2009-04-23 18:37:26 UTC ( 8 years, 6 months ago )
Last submission
2017-09-23 20:21:37 UTC ( 1 month, 2 weeks ago )
| File names |
smona_d3ff71862b4bbe4364e9769762e3f83e53fc2f68398cb41ebb719cb48579900e.bin LOKI_EDITOR.exe LOKI_EDITOR_1.2.3.exe |
Advanced heuristic and reputation engines
Symantec reputation
Suspicious.Insight
No comments.
No VirusTotal Community member has commented on this item yet, be the first one to do so!
You have not signed in. Only registered users can leave comments, sign in and have a voice!
No votes.
No one has voted on this item yet, be the first one to do so!