× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: e4e72af200b1560f5f0513bebaf6d682d2cb0be6c738bc208c6aa09920405a8d
File name: pfxBgclTV.exe
Detection ratio: 19 / 69
Analysis date: 2018-11-24 14:42:29 UTC ( 2 months, 3 weeks ago ) View latest
Antivirus Result Update
Avast Win32:MdeClass 20181124
AVG Win32:MdeClass 20181124
Bkav HW32.Packed. 20181123
ClamAV Win.Trojan.Emotet-6748802-0 20181124
CrowdStrike Falcon (ML) malicious_confidence_100% (D) 20181022
Cybereason malicious.bad67e 20180225
Cylance Unsafe 20181124
Cyren W32/Emotet.JI.gen!Eldorado 20181124
Endgame malicious (high confidence) 20181108
F-Prot W32/Emotet.JI.gen!Eldorado 20181124
Fortinet W32/GenKryptik.CRRV!tr 20181124
Sophos ML heuristic 20181108
McAfee-GW-Edition BehavesLike.Win32.Emotet.cc 20181124
Microsoft Trojan:Win32/Fuerboos.A!cl 20181124
Qihoo-360 HEUR/QVM20.1.6C01.Malware.Gen 20181124
Rising Trojan.Kryptik!1.B4D6 (CLASSIC) 20181124
SentinelOne (Static ML) static engine - malicious 20181011
Symantec ML.Attribute.HighConfidence 20181123
Trapmine malicious.high.ml.score 20180918
Ad-Aware 20181124
AegisLab 20181124
AhnLab-V3 20181124
Alibaba 20180921
ALYac 20181124
Antiy-AVL 20181124
Arcabit 20181124
Avast-Mobile 20181124
Avira (no cloud) 20181124
Babable 20180918
Baidu 20181123
BitDefender 20181124
CAT-QuickHeal 20181124
CMC 20181124
Comodo 20181124
DrWeb 20181124
eGambit 20181124
Emsisoft 20181124
ESET-NOD32 20181124
F-Secure 20181124
GData 20181124
Ikarus 20181124
Jiangmin 20181124
K7AntiVirus 20181124
K7GW 20181124
Kaspersky 20181124
Kingsoft 20181124
Malwarebytes 20181124
MAX 20181124
McAfee 20181124
eScan 20181124
NANO-Antivirus 20181124
Palo Alto Networks (Known Signatures) 20181124
Panda 20181124
Sophos AV 20181124
SUPERAntiSpyware 20181121
Symantec Mobile Insight 20181121
TACHYON 20181124
Tencent 20181124
TheHacker 20181118
TotalDefense 20181124
TrendMicro 20181124
TrendMicro-HouseCall 20181124
Trustlook 20181124
VBA32 20181123
ViRobot 20181124
Webroot 20181124
Yandex 20181123
Zillya 20181123
ZoneAlarm by Check Point 20181124
Zoner 20181124
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Internal name o
Description ODBC
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 1995-11-13 23:08:05
Entry Point 0x00003510
Number of sections 7
PE sections
PE imports
JetIntersectIndexes
GetCurrentProcess
IsProcessInJob
GetCommandLineW
GetCapture
GetWindowRect
WindowFromPhysicalPoint
SetCapture
IsWindowVisible
GetScrollPos
GetDesktopWindow
IsMenu
Number of PE resources by type
RT_STRING 2
RT_VERSION 1
Number of PE resources by language
NORWEGIAN BOKMAL 3
PE resources
Debug information
ExifTool file metadata
UninitializedDataSize
0

LinkerVersion
13.0

ImageVersion
0.1

FileVersionNumber
1.6.0.0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

FileDescription
ODBC

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Unicode

Ht
Microsoft Corporation. All r

EntryPoint
0x3510

MIMEType
application/octet-stream

TimeStamp
1995:11:13 15:08:05-08:00

FileType
Win32 EXE

PEType
PE32

InternalName
o

SubsystemVersion
5.0

OSVersion
6.0

FileOS
Windows NT 32-bit

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

TVersion
1.0

CodeSize
12288

FileSubtype
0

ProductVersionNumber
1.6.0.0

InitializedDataSize
0

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 c1a9d799b0ebd41d1302941fa0e6462a
SHA1 3b3b6fdbad67e8c638d1aa485cdb01ce3386987c
SHA256 e4e72af200b1560f5f0513bebaf6d682d2cb0be6c738bc208c6aa09920405a8d
ssdeep
3072:QwtYxW/CXXLM8S7DYnz6dmIsk91To2KnYxeRVdU7m0kRTduv0SBmw46:QEULM/f91sQxeRjU7nkRYsk

authentihash e8a73dd57b86f8be8c6dc8334f20244d4f6ba4e51701a2474f305e11111f4d55
imphash 6ff0abceb7551e4a02d944c4df83a3c7
File size 132.0 KB ( 135168 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Dynamic Link Library (generic) (38.4%)
Win32 Executable (generic) (26.3%)
OS/2 Executable (generic) (11.8%)
Generic Win/DOS Executable (11.6%)
DOS Executable Generic (11.6%)
Tags
peexe

VirusTotal metadata
First submission 2018-11-24 14:42:29 UTC ( 2 months, 3 weeks ago )
Last submission 2018-11-28 10:53:13 UTC ( 2 months, 3 weeks ago )
File names c1a9d799b0ebd41d1302941fa0e6462a
5KFGEwDzW.exe
o
pfxBgclTV.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!