× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: e8f6072cd7abab919c1c5d6f414c5040498f911887e8bda341258e45bd1e1765
File name: ys.png
Detection ratio: 18 / 66
Analysis date: 2019-03-07 05:41:20 UTC ( 2 months, 2 weeks ago ) View latest
Antivirus Result Update
Acronis suspicious 20190222
Avira (no cloud) HEUR/AGEN.1039019 20190306
CrowdStrike Falcon (ML) win/malicious_confidence_90% (D) 20190212
Cybereason malicious.84dbf4 20190109
Endgame malicious (high confidence) 20190215
ESET-NOD32 a variant of MSIL/Kryptik.QXN 20190307
F-Secure Heuristic.HEUR/AGEN.1039019 20190306
Fortinet MSIL/Kryptik.QVF!tr 20190307
Sophos ML heuristic 20181128
Malwarebytes Spyware.PasswordStealer.MSIL.Generic 20190307
McAfee Packed-FRO!1DB028310024 20190307
McAfee-GW-Edition BehavesLike.Win32.Generic.fc 20190307
Microsoft Trojan:Win32/Fuery.C!cl 20190307
Panda Trj/Genetic.gen 20190306
Qihoo-360 HEUR/QVM03.0.AD71.Malware.Gen 20190307
SentinelOne (Static ML) static engine - malicious 20190203
Symantec ML.Attribute.HighConfidence 20190307
Trapmine suspicious.low.ml.score 20190301
Ad-Aware 20190307
AegisLab 20190307
AhnLab-V3 20190307
Alibaba 20190306
ALYac 20190307
Antiy-AVL 20190307
Arcabit 20190307
Avast 20190307
Avast-Mobile 20190306
AVG 20190307
Babable 20180918
Baidu 20190306
BitDefender 20190307
Bkav 20190306
CAT-QuickHeal 20190306
ClamAV 20190306
CMC 20190307
Comodo 20190307
Cyren 20190307
DrWeb 20190307
eGambit 20190307
Emsisoft 20190307
GData 20190307
Ikarus 20190306
Jiangmin 20190307
K7AntiVirus 20190307
K7GW 20190307
Kaspersky 20190307
Kingsoft 20190307
MAX 20190307
eScan 20190307
NANO-Antivirus 20190307
Rising 20190307
Sophos AV 20190307
SUPERAntiSpyware 20190307
Symantec Mobile Insight 20190220
TACHYON 20190307
Tencent 20190307
TheHacker 20190304
TotalDefense 20190306
TrendMicro-HouseCall 20190307
Trustlook 20190307
VBA32 20190306
VIPRE 20190306
ViRobot 20190307
Webroot 20190307
Yandex 20190306
ZoneAlarm by Check Point 20190307
Zoner 20190307
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2018 PROFILAXIS PUMP AND CONTROL SRL

Product Access Web Datasheet Component
Original name idacids.exe
Internal name idacids.exe
File version 3.13.25.4
Description Access Web Datasheet Component
Comments urafejiyuyesixakovaxirub
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2009-02-01 08:43:54
Entry Point 0x0005E00A
Number of sections 5
.NET details
Module Version ID d08ef488-2888-4e27-a2eb-64cc8333eafe
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_MANIFEST 1
RT_VERSION 1
Number of PE resources by language
NEUTRAL 2
PE resources
ExifTool file metadata
SubsystemVersion
4.0

Comments
urafejiyuyesixakovaxirub

LinkerVersion
8.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
3.13.25.4

LanguageCode
Neutral

FileFlagsMask
0x003f

FileDescription
Access Web Datasheet Component

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Unicode

InitializedDataSize
320000

EntryPoint
0x5e00a

OriginalFileName
idacids.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright 2018 PROFILAXIS PUMP AND CONTROL SRL

FileVersion
3.13.25.4

TimeStamp
2009:02:01 09:43:54+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
idacids.exe

ProductVersion
3.13.25.4

UninitializedDataSize
0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
PROFILAXIS PUMP AND CONTROL SRL

CodeSize
36352

ProductName
Access Web Datasheet Component

ProductVersionNumber
3.13.25.4

FileTypeExtension
exe

ObjectFileType
Executable application

AssemblyVersion
0.0.0.0

File identification
MD5 1db028310024d785fbec7f24762abcde
SHA1 a1377b184dbf44341d0ecf4bf27c79b8ddb7a85d
SHA256 e8f6072cd7abab919c1c5d6f414c5040498f911887e8bda341258e45bd1e1765
ssdeep
6144:MxgUaDoRCTJliCYoONuQAke/h7Cw9CAB44ImfIbgtfhlnexF3Au:lDlJliRoRQsj4A97fTnexF3A

authentihash 4915bf9850d626bc2a1c7fa598c98c005f483a40ae51455502fec1ba186b240b
imphash f34d5f2d4577ed6d9ceec516c1f5a744
File size 349.0 KB ( 357376 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Win64 Executable (generic) (59.0%)
Win32 Dynamic Link Library (generic) (14.0%)
Win32 Executable (generic) (9.6%)
Win16/32 Executable Delphi generic (4.4%)
OS/2 Executable (generic) (4.3%)
Tags
peexe assembly

VirusTotal metadata
First submission 2019-03-07 05:41:20 UTC ( 2 months, 2 weeks ago )
Last submission 2019-03-07 05:41:20 UTC ( 2 months, 2 weeks ago )
File names ys.png
idacids.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!