× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: f26f5d088e568ac697d07da9f04e84b8e7d77c4331a6f8ca4a91ac13654902e3
File name: cumshot.jpg
Detection ratio: 21 / 56
Analysis date: 2017-01-18 14:04:23 UTC ( 2 years, 3 months ago ) View latest
Antivirus Result Update
Ad-Aware Trojan.GenericKD.4182224 20170118
AegisLab Ml.Attribute.Veryhighconfidence.[Heur.Advml!c 20170118
Arcabit Trojan.Generic.D3FD0D0 20170118
Avira (no cloud) TR/Crypt.Xpack.ebbvo 20170118
AVware Trojan.Win32.Generic!BT 20170118
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9969 20170118
BitDefender Trojan.GenericKD.4182224 20170118
CrowdStrike Falcon (ML) malicious_confidence_100% (W) 20161024
Emsisoft Trojan.GenericKD.4182224 (B) 20170118
ESET-NOD32 a variant of Generik.ESRJNWM 20170118
F-Secure Trojan.GenericKD.4182224 20170118
GData Trojan.GenericKD.4182224 20170118
Ikarus Trojan.SuspectCRC 20170118
Sophos ML backdoor.win32.drixed.m 20170111
K7GW Trojan ( 00502cdc1 ) 20170118
Kaspersky Trojan.Win32.Yakes.sfup 20170118
eScan Trojan.GenericKD.4182224 20170118
Qihoo-360 HEUR/QVM20.1.920B.Malware.Gen 20170118
Sophos AV Mal/Generic-S 20170118
Symantec ML.Relationship.HighConfidence [Trojan.Cridex] 20170117
VIPRE Trojan.Win32.Generic!BT 20170118
AhnLab-V3 20170118
Alibaba 20170118
ALYac 20170118
Antiy-AVL 20170118
Avast 20170118
AVG 20170118
CAT-QuickHeal 20170118
ClamAV 20170118
CMC 20170118
Comodo 20170118
Cyren 20170118
DrWeb 20170118
F-Prot 20170118
Fortinet 20170118
Jiangmin 20170118
K7AntiVirus 20170118
Kingsoft 20170118
Malwarebytes 20170118
McAfee 20170118
McAfee-GW-Edition 20170118
Microsoft 20170118
NANO-Antivirus 20170118
nProtect 20170118
Panda 20170117
Rising 20170118
SUPERAntiSpyware 20170118
Tencent 20170118
TheHacker 20170117
TotalDefense 20170118
TrendMicro 20170118
TrendMicro-HouseCall 20170118
Trustlook 20170118
VBA32 20170117
ViRobot 20170118
WhiteArmor 20170117
Yandex 20170117
Zillya 20170117
Zoner 20170118
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
© Ghbsg Corporation. All rights reserved.

Product Microsoft® Windows® Operating System
Original name COMUID.DLL
Internal name COMUID.DLL
File version 2001.12.10530.17415 (winblue_r4.141028-1500)
Description COM+ Explorer UI
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2017-01-15 04:29:39
Entry Point 0x0000CB80
Number of sections 8
PE sections
PE imports
CertEnumCertificateContextProperties
CryptEnumOIDInfo
CryptMsgGetParam
PFXExportCertStore
WaitCommEvent
GetComputerNameW
GetNativeSystemInfo
GetCommandLineW
ConvertDefaultLocale
LoadLibraryA
GetModuleHandleW
DsReplicaSyncA
_snwprintf
PdhGetCounterInfoA
Number of PE resources by type
RT_MANIFEST 1
RT_VERSION 1
Number of PE resources by language
ENGLISH US 2
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
8.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
2001.12.10530.17415

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
111616

EntryPoint
0xcb80

OriginalFileName
COMUID.DLL

MIMEType
application/octet-stream

LegalCopyright
Ghbsg Corporation. All rights reserved.

FileVersion
2001.12.10530.17415 (winblue_r4.141028-1500)

TimeStamp
2017:01:15 05:29:39+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
COMUID.DLL

ProductVersion
6.3.9601.17415

FileDescription
COM+ Explorer UI

OSVersion
4.0

FileOS
Windows NT 32-bit

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Ghbsg Corporation

CodeSize
48640

ProductName
Microsoft Windows Operating System

ProductVersionNumber
6.3.9600.17415

FileTypeExtension
exe

ObjectFileType
Dynamic link library

File identification
MD5 a3141ad9d2c40d5cac5adde1917b754a
SHA1 b07649906dc5ba9432adbb9f3f5c7c39299204fb
SHA256 f26f5d088e568ac697d07da9f04e84b8e7d77c4331a6f8ca4a91ac13654902e3
ssdeep
3072:x3UHBcvJySG0rInvLAEpaadfqn/jOk5AmSVim4sROi6Yh3c:wc7IvHd0NL5sROwM

authentihash c05688b24552a7614ad047a90a0194732ca20518c55f972a80084d2ff7607413
imphash f50d155b7810bae9ed3e385aa064c977
File size 141.3 KB ( 144656 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable (generic) (42.6%)
Clipper DOS Executable (19.1%)
Generic Win/DOS Executable (18.9%)
DOS Executable Generic (18.9%)
VXD Driver (0.2%)
Tags
peexe

VirusTotal metadata
First submission 2017-01-17 14:40:58 UTC ( 2 years, 3 months ago )
Last submission 2017-01-18 14:04:23 UTC ( 2 years, 3 months ago )
File names cumshot.jpg
COMUID.DLL
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Runtime DLLs