× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: e5b3df4544796c167c5a4e67114c6daac78b907de75d5703d172e60ab337e1ff
Detection ratio: 12 / 67
Analysis date: 2018-01-19 12:02:17 UTC ( 1 year, 2 months ago ) View latest
Antivirus Result Update
Avast FileRepMalware 20180119
AVG FileRepMalware 20180119
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9999 20180118
CrowdStrike Falcon (ML) malicious_confidence_100% (W) 20171016
Cybereason malicious.11bcdc 20171103
Endgame malicious (high confidence) 20171130
Sophos ML heuristic 20170914
Kaspersky UDS:DangerousObject.Multi.Generic 20180119
Palo Alto Networks (Known Signatures) generic.ml 20180119
Tencent Suspicious.Heuristic.Gen.b.0 20180119
Webroot W32.Trojan.Gen 20180119
ZoneAlarm by Check Point UDS:DangerousObject.Multi.Generic 20180119
Ad-Aware 20180119
AegisLab 20180119
AhnLab-V3 20180119
Alibaba 20180119
ALYac 20180119
Antiy-AVL 20180119
Arcabit 20180119
Avast-Mobile 20180119
Avira (no cloud) 20180119
AVware 20180119
BitDefender 20180119
Bkav 20180119
CAT-QuickHeal 20180119
ClamAV 20180119
CMC 20180116
Comodo 20180119
Cylance 20180119
Cyren 20180119
DrWeb 20180119
eGambit 20180119
Emsisoft 20180119
ESET-NOD32 20180119
F-Prot 20180119
F-Secure 20180119
Fortinet 20180119
GData 20180119
Ikarus 20180119
Jiangmin 20180119
K7AntiVirus 20180119
K7GW 20180119
Kingsoft 20180119
Malwarebytes 20180119
MAX 20180119
McAfee 20180119
McAfee-GW-Edition 20180119
Microsoft 20180119
eScan 20180119
NANO-Antivirus 20180119
nProtect 20180119
Panda 20180118
Qihoo-360 20180119
Rising 20180119
SentinelOne (Static ML) 20180115
Sophos AV 20180119
SUPERAntiSpyware 20180119
Symantec 20180119
Symantec Mobile Insight 20180119
TheHacker 20180115
TotalDefense 20180118
TrendMicro 20180119
TrendMicro-HouseCall 20180119
Trustlook 20180119
VBA32 20180119
VIPRE 20180119
ViRobot 20180119
Yandex 20180112
Zillya 20180118
Zoner 20180119
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright ©. InCode Solutions

Product Sensea
Original name Sensea.exe
Internal name Sensea
File version 2.7.5.2
Description Team Property Beneficial Internal Nclb Plainly
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2015-01-19 12:59:15
Entry Point 0x000115CC
Number of sections 11
PE sections
PE imports
AdjustTokenPrivileges
LookupPrivilegeValueA
QueryServiceLockStatusA
QueryServiceObjectSecurity
OpenProcessToken
AVIStreamGetFrameOpen
ChooseColorA
CertEnumSystemStore
CertGetNameStringA
GetDeviceCaps
SetTextJustification
CreateFontA
CreateSolidBrush
ImmReleaseContext
ImmSetOpenStatus
ImmGetContext
ImmGetOpenStatus
GetStdHandle
WaitForSingleObject
EncodePointer
SetConsoleCursorPosition
DeleteCriticalSection
GetCurrentProcess
GetConsoleMode
LocalAlloc
lstrcatA
FreeEnvironmentStringsW
InitializeSListHead
SetStdHandle
GetFileTime
GetCPInfo
FillConsoleOutputCharacterA
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
SetEvent
InitializeCriticalSection
FindClose
TlsGetValue
FormatMessageA
SetLastError
GetEnvironmentVariableA
IsDebuggerPresent
HeapAlloc
GetModuleFileNameA
GetPriorityClass
LoadLibraryExA
UnhandledExceptionFilter
LoadLibraryExW
MultiByteToWideChar
SetFilePointerEx
CreateThread
SetUnhandledExceptionFilter
MulDiv
IsProcessorFeaturePresent
SetPriorityClass
TerminateProcess
GetModuleHandleExW
GetCurrentThreadId
GetModuleHandleExA
WriteConsoleW
InitializeCriticalSectionAndSpinCount
HeapFree
EnterCriticalSection
LoadLibraryW
GetOEMCP
QueryPerformanceCounter
TlsAlloc
FlushFileBuffers
LoadLibraryA
RtlUnwind
FreeLibrary
GetWindowsDirectoryA
GetStartupInfoW
GetProcAddress
GetConsoleScreenBufferInfo
FillConsoleOutputAttribute
GetProcessHeap
FindFirstFileExA
ResetEvent
FindNextFileA
WaitForMultipleObjects
CreateEventW
CreateFileW
CreateEventA
GetFileType
TlsSetValue
CreateFileA
ExitProcess
LeaveCriticalSection
GetLastError
LCMapStringW
GetConsoleCP
GetThreadLocale
GetEnvironmentStringsW
WaitForSingleObjectEx
GetCurrentProcessId
GetCommandLineW
WideCharToMultiByte
HeapSize
GetCommandLineA
RaiseException
TlsFree
ReadFile
CloseHandle
GetACP
GetModuleHandleW
IsValidCodePage
wglUseFontOutlinesA
wglUseFontBitmapsA
RpcStringFreeA
UuidToStringA
UuidCreate
DragAcceptFiles
DragQueryFileA
Shell_NotifyIconA
PathUnquoteSpacesA
MapWindowPoints
GetParent
OffsetRect
ShowWindow
GetWindowThreadProcessId
SendDlgItemMessageA
GetSystemMetrics
AppendMenuA
SetDlgItemTextA
GetClassNameA
GetWindow
GetSysColor
GetDC
GetCursorPos
ReleaseDC
SetWindowWord
SendMessageA
GetClientRect
CreateWindowExA
GetDlgItem
SetScrollPos
TrackPopupMenuEx
GetWindowLongA
GetWindowTextLengthA
SetTimer
GetTopWindow
WaitForInputIdle
GetSysColorBrush
GetSystemMenu
GetFocus
GetWindowTextA
WinHttpSetCredentials
WinHttpSendRequest
mmioAscend
RevokeDragDrop
CoLockObjectExternal
PdhCollectQueryData
SnmpUtilOidToA
SnmpUtilIdsToA
Number of PE resources by type
RT_ICON 6
TXT 4
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 13
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
6.0

InitializedDataSize
313856

ImageVersion
0.0

ProductName
Sensea

FileVersionNumber
2.7.5.2

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

ImageFileCharacteristics
No relocs, Executable, 32-bit

CharacterSet
Unicode

LinkerVersion
14.0

FileTypeExtension
exe

OriginalFileName
Sensea.exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
2.7.5.2

TimeStamp
2015:01:19 04:59:15-08:00

FileType
Win32 EXE

PEType
PE32

InternalName
Sensea

ProductVersion
2.7.5.2

FileDescription
Team Property Beneficial Internal Nclb Plainly

OSVersion
6.0

FileOS
Windows NT 32-bit

LegalCopyright
Copyright . InCode Solutions

MachineType
Intel 386 or later, and compatibles

CompanyName
InCode Solutions

CodeSize
111104

FileSubtype
0

ProductVersionNumber
2.7.5.2

EntryPoint
0x115cc

ObjectFileType
Executable application

File identification
MD5 949ce896ae3559b702a261d8415d1908
SHA1 7b9b89411bcdc9bf3fa1540f80479a2ca702baba
SHA256 e5b3df4544796c167c5a4e67114c6daac78b907de75d5703d172e60ab337e1ff
ssdeep
6144:0Fv+ole8NEc2zzgtH9WhFGcfqjXXDzK6gac75Z0lmE7Qo2WE:0FmoE8qTXgteqjDgac75K3e

authentihash 68897c0930febf775a914762abe36c72ec9859ede2c0a984c1a8c40698a78d87
imphash 1247a234c63d626b0f8aac9440d78762
File size 416.0 KB ( 425984 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win64 Executable (generic) (45.0%)
Microsoft Visual C++ compiled executable (generic) (26.9%)
Win32 Dynamic Link Library (generic) (10.7%)
Win32 Executable (generic) (7.3%)
OS/2 Executable (generic) (3.3%)
Tags
peexe

VirusTotal metadata
First submission 2018-01-19 09:43:13 UTC ( 1 year, 2 months ago )
Last submission 2018-05-25 17:44:07 UTC ( 10 months, 4 weeks ago )
File names 1013_cr.exe
Sensea
Sensea.exe
4548021.exe
flareFile
output.112739149.txt
subscribers.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!