× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: df3e700e490edd8e2f7fb693e0d5ff114c0665f84ced202a519eb710cd592037
File name: Dust 514.exe
Detection ratio: 0 / 46
Analysis date: 2012-12-21 05:28:08 UTC ( 4 years, 11 months ago )
Antivirus Result Update
Yandex 20121220
AhnLab-V3 20121220
AntiVir 20121221
Antiy-AVL 20121220
Avast 20121221
AVG 20121221
BitDefender 20121221
ByteHero 20121212
CAT-QuickHeal 20121220
ClamAV 20121221
Commtouch 20121221
Comodo 20121221
DrWeb 20121221
Emsisoft 20121221
eSafe 20121220
ESET-NOD32 20121220
F-Prot 20121221
F-Secure 20121221
Fortinet 20121221
GData 20121221
Ikarus 20121221
Jiangmin 20121221
K7AntiVirus 20121220
Kaspersky 20121221
Kingsoft 20121217
Malwarebytes 20121221
McAfee 20121221
McAfee-GW-Edition 20121221
Microsoft 20121221
eScan 20121221
NANO-Antivirus 20121221
Norman 20121220
nProtect 20121221
Panda 20121220
PCTools 20121221
Rising 20121221
Sophos AV 20121221
SUPERAntiSpyware 20121220
Symantec 20121221
TheHacker 20121220
TotalDefense 20121220
TrendMicro 20121221
TrendMicro-HouseCall 20121221
VBA32 20121220
VIPRE 20121221
ViRobot 20121221
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2012-12-20 16:54:26
Entry Point 0x0002117E
Number of sections 4
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_ICON 1
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 4
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
8.0

ImageVersion
0.0

FileVersionNumber
1.0.0.0

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
19456

OriginalFilename
Dust 514.exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
1.0.0.0

TimeStamp
2012:12:20 16:54:26+00:00

FileType
Win32 EXE

PEType
PE32

InternalName
Dust 514.exe

ProductVersion
1.0.0.0

FileDescription
Dust 514

OSVersion
4.0

FileOS
Win32

LegalCopyright

MachineType
Intel 386 or later, and compatibles

CodeSize
127488

FileSubtype
0

ProductVersionNumber
1.0.0.0

EntryPoint
0x2117e

ObjectFileType
Executable application

AssemblyVersion
1.0.0.0

File identification
MD5 9e6cb1556737262b3e8eaeac0f83ae2c
SHA1 7ce66f10d4f342cd831237fff62fb134dc3c366b
SHA256 df3e700e490edd8e2f7fb693e0d5ff114c0665f84ced202a519eb710cd592037
ssdeep
3072:amI15qm1hm3tbf0DkktC2Y/C2Y/C2Yr7YWfp2lHz:aHq2m3tbf0Dkkw2Yq2Yq2Yr7vfY

File size 144.5 KB ( 147968 bytes )
File type Win32 EXE
Magic literal
MS-DOS executable PE for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic CIL Executable (.NET, Mono, etc.) (72.5%)
Windows Screen Saver (12.9%)
Win32 Executable Generic (8.4%)
Win16/32 Executable Delphi generic (2.0%)
Generic Win/DOS Executable (1.9%)
Tags
peexe

VirusTotal metadata
First submission 2012-12-21 05:28:08 UTC ( 4 years, 11 months ago )
Last submission 2012-12-21 05:28:08 UTC ( 4 years, 11 months ago )
File names Dust 514.exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!