× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: fedef6db748775ad70379d942f85a38566e86f3f74382a232ebb6db91068b47f
File name: c03694393144c1d2882360590597a0ab
Detection ratio: 36 / 64
Analysis date: 2018-07-05 19:41:47 UTC ( 7 months, 2 weeks ago )
Antivirus Result Update
Ad-Aware Gen:Variant.Graftor.496118 20180705
AhnLab-V3 Trojan/Win32.Emotet.R229622 20180705
ALYac Gen:Variant.Graftor.496118 20180705
Arcabit Trojan.Graftor.D791F6 20180705
Avast Win32:GenX 20180705
AVG Win32:GenX 20180705
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9989 20180705
BitDefender Gen:Variant.Graftor.496118 20180705
CrowdStrike Falcon (ML) malicious_confidence_100% (D) 20180530
Cyren W32/Emotet.BS.gen!Eldorado 20180705
DrWeb Trojan.EmotetENT.230 20180705
Emsisoft Trojan.Emotet (A) 20180705
Endgame malicious (high confidence) 20180612
ESET-NOD32 a variant of Win32/Kryptik.GHJF 20180705
F-Prot W32/Emotet.BS.gen!Eldorado 20180705
F-Secure Gen:Variant.Graftor.496118 20180705
Fortinet W32/Kryptik.GHGF!tr 20180705
GData Win32.Trojan-Spy.Emotet.QZ 20180705
Ikarus Trojan-Banker.Emotet 20180705
Sophos ML heuristic 20180601
K7GW Hacktool ( 700007861 ) 20180705
Kaspersky Trojan.Win32.Dovs.ola 20180705
Malwarebytes Trojan.Emotet 20180705
MAX malware (ai score=80) 20180705
McAfee GenericRXFR-RI!C03694393144 20180705
McAfee-GW-Edition BehavesLike.Win32.Emotet.dt 20180705
Microsoft Trojan:Win32/Skeeyah.A!rfn 20180705
eScan Gen:Variant.Graftor.496118 20180705
Qihoo-360 HEUR/QVM20.1.9AF1.Malware.Gen 20180705
SentinelOne (Static ML) static engine - malicious 20180701
Sophos AV Mal/EncPk-ANX 20180705
Symantec ML.Attribute.HighConfidence 20180705
Tencent Win32.Trojan.Dovs.Sune 20180705
VBA32 BScope.TrojanBanker.Emotet 20180705
Webroot W32.Trojan.Emotet 20180705
ZoneAlarm by Check Point Trojan.Win32.Dovs.ola 20180705
AegisLab 20180705
Antiy-AVL 20180705
Avast-Mobile 20180705
Avira (no cloud) 20180705
AVware 20180705
Babable 20180406
Bkav 20180705
CAT-QuickHeal 20180705
ClamAV 20180705
CMC 20180705
Comodo 20180705
Cybereason 20180225
eGambit 20180705
Jiangmin 20180705
K7AntiVirus 20180705
Kingsoft 20180705
NANO-Antivirus 20180705
Palo Alto Networks (Known Signatures) 20180705
Panda 20180705
SUPERAntiSpyware 20180705
TACHYON 20180705
TheHacker 20180628
TotalDefense 20180705
Trustlook 20180705
VIPRE 20180705
ViRobot 20180705
Yandex 20180705
Zillya 20180705
Zoner 20180704
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright 2016 The Apache Software Foundation.

Product Apache HTTP Server
Original name htdigest.exe
Internal name htdigest.exe
File version 2.4.23
Description Apache htdigest command line utility
Comments Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0 Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2016-07-09 09:09:36
Entry Point 0x0000100F
Number of sections 8
PE sections
PE imports
RegQueryInfoKeyW
InitializeAcl
CreateProcessWithLogonW
RegRestoreKeyW
CertVerifyValidityNesting
CryptBinaryToStringA
CryptGetDefaultOIDFunctionAddress
CertNameToStrW
SetWorldTransform
CloseEnhMetaFile
GetOutlineTextMetricsW
FindFirstFileNameTransactedW
GetCommModemStatus
CancelIo
ReadProcessMemory
SafeArrayCreateVectorEx
SysReAllocString
CreateDispTypeInfo
glEnable
glGetIntegerv
RasValidateEntryNameW
CM_Disconnect_Machine
SetWinEventHook
GetGUIThreadInfo
GetWindowModuleFileNameW
CreateDesktopW
GetScrollBarInfo
waveOutGetNumDevs
ReadPrinter
DeletePrinterConnectionW
EnumPrinterDataExW
STGMEDIUM_UserMarshal
CoRevokeInitializeSpy
MonikerRelativePathTo
FaultInIEFeature
Number of PE resources by type
RT_MANIFEST 1
RT_VERSION 1
Number of PE resources by language
ENGLISH US 2
PE resources
Debug information
ExifTool file metadata
FileDescription
Apache htdigest command line utility

Comments
Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at

InitializedDataSize
106496

ImageVersion
0.0

ProductName
Apache HTTP Server

FileVersionNumber
2.4.23.0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Unicode

LinkerVersion
12.0

FileTypeExtension
exe

OriginalFileName
htdigest.exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
2.4.23

TimeStamp
2016:07:09 10:09:36+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
htdigest.exe

SubsystemVersion
5.0

ProductVersion
2.4.23

UninitializedDataSize
0

OSVersion
5.0

FileOS
Win32

LegalCopyright
Copyright 2016 The Apache Software Foundation.

MachineType
Intel 386 or later, and compatibles

CompanyName
Apache Software Foundation

CodeSize
0

FileSubtype
0

ProductVersionNumber
2.4.23.0

EntryPoint
0x100f

ObjectFileType
Executable application

File identification
MD5 c03694393144c1d2882360590597a0ab
SHA1 e1504dc2c0f86544e09f736beb73ec12a2c79b8e
SHA256 fedef6db748775ad70379d942f85a38566e86f3f74382a232ebb6db91068b47f
ssdeep
1536:z8Uo64+1Px4t4UpYaJzPqklYJmtlVCacKNq8g:Vz4kPzUbpiKYmHpcAg

authentihash 4431e22ac72e597691f971e9cf686b04864bfadcda59920d6a27eb02eb41bcf2
imphash 49220316d9fbf1bf68cf0b814b7e7168
File size 268.0 KB ( 274432 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID OS/2 Executable (generic) (33.6%)
Generic Win/DOS Executable (33.1%)
DOS Executable Generic (33.1%)
Tags
peexe

VirusTotal metadata
First submission 2018-07-05 19:41:47 UTC ( 7 months, 2 weeks ago )
Last submission 2018-07-05 19:41:47 UTC ( 7 months, 2 weeks ago )
File names htdigest.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!