× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: eb2ba9d47c3a3c0120738069bc146de637497b60ab0d4152e582d80c136f1d68
File name: MyLogerMailEnd.exe
Detection ratio: 49 / 68
Analysis date: 2018-06-06 00:01:37 UTC ( 2 weeks ago )
Antivirus Result Update
Ad-Aware Gen:Variant.Kazy.434187 20180605
AegisLab Troj.W32.Generic!c 20180605
ALYac Gen:Variant.Kazy.434187 20180605
Antiy-AVL Trojan/Win32.Unknown 20180606
Arcabit Trojan.Kazy.D6A00B 20180605
Avast Win32:Malware-gen 20180605
AVG Win32:Malware-gen 20180605
Avira (no cloud) TR/Spy.Gen 20180606
AVware Trojan.Win32.Generic!BT 20180605
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9998 20180605
BitDefender Gen:Variant.Kazy.434187 20180605
Bkav W32.LogalicY.Trojan 20180605
CAT-QuickHeal Trojan.Generic 20180605
ClamAV Win.Trojan.Agent-394251 20180605
Comodo UnclassifiedMalware 20180606
Cybereason malicious.bd5fc3
Cylance Unsafe 20180606
Cyren W32/GenBl.7D867D6B!Olympus 20180605
DrWeb Trojan.DownLoader26.6864 20180605
Emsisoft Gen:Variant.Kazy.434187 (B) 20180605
ESET-NOD32 MSIL/Agent.NOG 20180605
F-Secure Gen:Variant.Kazy.434187 20180605
Fortinet MSIL/Generic.DN.11AA0D!tr 20180605
GData Gen:Variant.Kazy.434187 20180605
Ikarus Trojan.MSIL.Spy 20180605
Jiangmin Trojan/Generic.apwzv 20180605
K7AntiVirus Backdoor ( 04c4d2ae1 ) 20180605
K7GW Backdoor ( 04c4d2ae1 ) 20180605
Kaspersky HEUR:Trojan.Win32.Generic 20180605
MAX malware (ai score=100) 20180606
McAfee Trojan-FISM!7D867D6BD5FC 20180605
McAfee-GW-Edition Trojan-FISM!7D867D6BD5FC 20180605
Microsoft Trojan:Win32/Dynamer!ac 20180605
eScan Gen:Variant.Kazy.434187 20180605
NANO-Antivirus Trojan.Win32.Drop.dkjuui 20180605
Qihoo-360 Win32/Trojan.e6d 20180606
Sophos AV Mal/MSIL-AV 20180606
Symantec Trojan.Gen 20180606
Tencent Win32.Trojan.Spy.Akpi 20180606
TheHacker Trojan/Agent.nog 20180606
TotalDefense Win32/Tnega.AQWZ 20180605
TrendMicro TROJ_MSIL.AXA 20180605
TrendMicro-HouseCall TROJ_MSIL.AXA 20180605
VIPRE Trojan.Win32.Generic!BT 20180605
ViRobot Trojan.Win32.S.Agent.34304.L 20180605
Webroot W32.Malware.Gen 20180606
Yandex Trojan.Agent!qv0DUzQJvlo 20180529
Zillya Trojan.Agent.Win32.313572 20180605
ZoneAlarm by Check Point HEUR:Trojan.Win32.Generic 20180605
AhnLab-V3 20180605
Alibaba 20180604
Avast-Mobile 20180606
Babable 20180406
CMC 20180605
CrowdStrike Falcon (ML) 20180202
eGambit 20180606
Endgame 20180507
F-Prot 20180605
Sophos ML 20180601
Kingsoft 20180606
Malwarebytes 20180605
Palo Alto Networks (Known Signatures) 20180606
Panda 20180605
Rising 20180605
SentinelOne (Static ML) 20180225
SUPERAntiSpyware 20180606
Symantec Mobile Insight 20180605
TACHYON 20180605
Trustlook 20180606
VBA32 20180605
Zoner 20180606
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2012

Product MyLogerMailEnd
Original name MyLogerMailEnd.exe
Internal name MyLogerMailEnd.exe
File version 1.0.0.0
Description MyLogerMailEnd
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2012-04-11 03:36:51
Entry Point 0x0000902E
Number of sections 4
.NET details
Module Version ID b5a1aa22-2e17-4024-864c-f0201f23a7ab
TypeLib ID 1fb2c7ea-d7d1-4a20-8c90-aae8f3effdf8
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_ICON 2
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 5
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
4.0

InitializedDataSize
4096

ImageVersion
0.0

ProductName
MyLogerMailEnd

FileVersionNumber
1.0.0.0

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

LinkerVersion
8.0

FileTypeExtension
exe

OriginalFileName
MyLogerMailEnd.exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
1.0.0.0

TimeStamp
2012:04:11 04:36:51+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
MyLogerMailEnd.exe

ProductVersion
1.0.0.0

FileDescription
MyLogerMailEnd

OSVersion
4.0

FileOS
Win32

LegalCopyright
Copyright 2012

MachineType
Intel 386 or later, and compatibles

CodeSize
29184

FileSubtype
0

ProductVersionNumber
1.0.0.0

EntryPoint
0x902e

ObjectFileType
Executable application

AssemblyVersion
1.0.0.0

File identification
MD5 7d867d6bd5fc3015a31fdfa121ba9187
SHA1 c83478bc431e936f36919c59103bd6ba845c8060
SHA256 eb2ba9d47c3a3c0120738069bc146de637497b60ab0d4152e582d80c136f1d68
ssdeep
768:AWGVCut7YGTQijWaqL0bZ02XPkz1zcyWg:AW1utFNqL0W2fkz1z/

authentihash 84d567c55a9160e7007a440967c2b322b5a80e59e16b29cf51bd4a00ba6452b9
imphash f34d5f2d4577ed6d9ceec516c1f5a744
File size 33.5 KB ( 34304 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic CIL Executable (.NET, Mono, etc.) (55.0%)
Win64 Executable (generic) (20.7%)
Windows screen saver (9.8%)
Win32 Dynamic Link Library (generic) (4.9%)
Win32 Executable (generic) (3.3%)
Tags
peexe assembly

VirusTotal metadata
First submission 2012-04-11 11:36:15 UTC ( 6 years, 2 months ago )
Last submission 2018-06-06 00:01:37 UTC ( 2 weeks ago )
File names test.bin
10.exe
1.exe
eb2ba9d47c3a3c0120738069bc146de637497b60ab0d4152e582d80c136f1d68
eb2ba9d47c3a3c0120738069bc146de637497b60ab0d4152e582d80c136f1d68
FacebookWebBrowser.ex
FacebookWebBrowser.exe
FacebookWebBrowser.exe
FacebookWebBrowser.exe
db826caa-6c93-40fa-ab76-6bd1b9b246c9
7d867d6bd5fc3015a31fdfa121ba9187.virus
eb2ba9d47c3a3c0120738069bc146de637497b60ab0d4152e582d80c136f1d68-2
7d867d6bd5fc3015a31fdfa121ba9187.exe
testfile.exe
MyLogerMailEnd.exe
7D867D6BD5FC3015A31FDFA121BA9187
eb2ba9d47c3a3c0120738069bc146de637497b60ab0d4152e582d80c136f1d68.exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!