× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: e58e6ec17a43b9e2ab890571099e36b30b34f4b3c3302733bbb6f16d1ad5e8b6
File name: e11d10fa561e2076a2b0f4b39c850329.virus
Detection ratio: 32 / 57
Analysis date: 2015-05-29 00:45:33 UTC ( 3 years, 9 months ago )
Antivirus Result Update
Ad-Aware Gen:Variant.Zusy.143342 20150528
AhnLab-V3 Trojan/Win32.Blocker 20150528
ALYac Gen:Variant.Kazy.620628 20150528
Antiy-AVL Trojan[Spy]/Win32.Zbot 20150528
Avast Win32:Malware-gen 20150529
AVG MSIL8.ICF 20150528
Avira (no cloud) TR/Dropper.MSIL.163143 20150528
AVware Trojan.Win32.Generic!BT 20150529
BitDefender Gen:Variant.Zusy.143342 20150528
DrWeb Trojan.Inject1.43610 20150529
Emsisoft Gen:Variant.Zusy.143342 (B) 20150528
ESET-NOD32 a variant of MSIL/Injector.JVI 20150528
F-Secure Gen:Variant.Zusy.143342 20150529
Fortinet W32/Zbot.LOB!tr 20150528
GData Gen:Variant.Zusy.143342 20150528
Ikarus Trojan.MSIL.Injector 20150529
K7AntiVirus Trojan ( 004c348a1 ) 20150528
K7GW Trojan ( 004c348a1 ) 20150528
Kaspersky Trojan-Spy.Win32.Zbot.lob 20150528
Malwarebytes Trojan.CryptoWall 20150528
McAfee Artemis!E11D10FA561E 20150529
McAfee-GW-Edition Artemis 20150528
Microsoft PWS:Win32/Zbot.gen!VM 20150528
eScan Gen:Variant.Zusy.143342 20150528
NANO-Antivirus Trojan.Win32.Zbot.dsdgug 20150529
Panda Trj/CI.A 20150528
Qihoo-360 HEUR/QVM03.0.Malware.Gen 20150529
Symantec WS.Reputation.1 20150528
Tencent Trojan.Win32.YY.Gen.18 20150529
TrendMicro TROJ_FORUCON.BMC 20150529
TrendMicro-HouseCall TROJ_FORUCON.BMC 20150529
VIPRE Trojan.Win32.Generic!BT 20150529
AegisLab 20150529
Yandex 20150528
Alibaba 20150529
Baidu-International 20150528
Bkav 20150528
ByteHero 20150529
CAT-QuickHeal 20150528
ClamAV 20150529
CMC 20150527
Comodo 20150529
Cyren 20150528
F-Prot 20150528
Jiangmin 20150528
Kingsoft 20150529
Norman 20150528
nProtect 20150528
Rising 20150528
Sophos AV 20150528
SUPERAntiSpyware 20150529
TheHacker 20150526
TotalDefense 20150528
VBA32 20150526
ViRobot 20150528
Zillya 20150528
Zoner 20150526
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
LaunchesImagoImpeded Copyhight DonatedFostered

Publisher DreadlocksFussiness
Product DependenceEscapadesHolism
Original name FigtreeInsensitiveDiagonally????
Internal name FigtreeInsensitiveDiagonally????
File version 0.0.1.4
Description FlyGeneric
Comments DiminutiveFormalisms
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2004-01-22 13:25:29
Entry Point 0x00048C2E
Number of sections 3
.NET details
Module Version ID ab77084c-f3c7-430e-b17a-4efeb4a4fa51
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_VERSION 1
Number of PE resources by language
NEUTRAL 1
PE resources
ExifTool file metadata
SubsystemVersion
4.0

Comments
DiminutiveFormalisms

LinkerVersion
8.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
0.0.1.4

LanguageCode
Neutral

FileFlagsMask
0x003f

FileDescription
FlyGeneric

CharacterSet
Unicode

InitializedDataSize
2048

EntryPoint
0x48c2e

OriginalFileName
FigtreeInsensitiveDiagonally

MIMEType
application/octet-stream

LegalCopyright
LaunchesImagoImpeded Copyhight DonatedFostered

FileVersion
0.0.1.4

TimeStamp
2004:01:22 14:25:29+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
FigtreeInsensitiveDiagonally

ProductVersion
0.0.1.4

UninitializedDataSize
0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
DreadlocksFussiness

CodeSize
290304

ProductName
DependenceEscapadesHolism

ProductVersionNumber
0.0.1.4

FileTypeExtension
exe

ObjectFileType
Executable application

AssemblyVersion
0.0.0.1

File identification
MD5 e11d10fa561e2076a2b0f4b39c850329
SHA1 ed5713504636981748fccf90e10e6bc6ae8572b9
SHA256 e58e6ec17a43b9e2ab890571099e36b30b34f4b3c3302733bbb6f16d1ad5e8b6
ssdeep
6144:L3crtyikRBuTIKUskS8+ZHFWaILbI6G2LoSNrCMu:T6TIKUskSJJIvI6GiowrCM

authentihash 380ccb568ca3a5e1fced94b94c445ef8ba2102b841ef295a2e7216d6ba4b73db
imphash f34d5f2d4577ed6d9ceec516c1f5a744
File size 286.0 KB ( 292864 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic CIL Executable (.NET, Mono, etc.) (56.7%)
Win64 Executable (generic) (21.4%)
Windows screen saver (10.1%)
Win32 Dynamic Link Library (generic) (5.0%)
Win32 Executable (generic) (3.4%)
Tags
peexe assembly

VirusTotal metadata
First submission 2015-05-29 00:45:33 UTC ( 3 years, 9 months ago )
Last submission 2015-05-29 00:45:33 UTC ( 3 years, 9 months ago )
File names e11d10fa561e2076a2b0f4b39c850329.virus
FigtreeInsensitiveDiagonally????
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!