× ¡Las cookies están desactivadas! Esta página requiere que las cookies estén activadas para funcionar correctamente
SHA256: 229aa66058b4e4e45c7538709dc409e6c1df681cfe2d9c91903f7dd6484af4f7
Nombre: GunzBR.exe
Detecciones: 1 / 61
Fecha de análisis: 2017-06-28 18:16:28 UTC ( hace 1 año, 9 meses ) Ver el más reciente
Antivirus Resultado Actualización
Bkav W32.eHeur.Malware11 20170628
Ad-Aware 20170628
AegisLab 20170628
AhnLab-V3 20170628
Alibaba 20170628
ALYac 20170628
Antiy-AVL 20170628
Arcabit 20170628
Avast 20170628
AVG 20170628
Avira (no cloud) 20170628
AVware 20170628
Baidu 20170628
BitDefender 20170628
CAT-QuickHeal 20170628
ClamAV 20170628
CMC 20170628
Comodo 20170628
CrowdStrike Falcon (ML) 20170420
Cyren 20170628
DrWeb 20170628
Emsisoft 20170628
Endgame 20170615
ESET-NOD32 20170628
F-Prot 20170628
F-Secure 20170628
Fortinet 20170628
GData 20170628
Ikarus 20170628
Sophos ML 20170607
Jiangmin 20170628
K7AntiVirus 20170627
K7GW 20170628
Kaspersky 20170628
Kingsoft 20170628
Malwarebytes 20170628
McAfee 20170628
McAfee-GW-Edition 20170628
Microsoft 20170628
eScan 20170628
NANO-Antivirus 20170628
nProtect 20170628
Palo Alto Networks (Known Signatures) 20170628
Panda 20170628
Qihoo-360 20170628
Rising 20170628
SentinelOne (Static ML) 20170516
Sophos AV 20170628
SUPERAntiSpyware 20170628
Symantec 20170628
Symantec Mobile Insight 20170627
Tencent 20170628
TheHacker 20170628
TrendMicro 20170628
TrendMicro-HouseCall 20170628
Trustlook 20170628
VBA32 20170628
VIPRE 20170628
ViRobot 20170628
Webroot 20170628
WhiteArmor 20170627
Yandex 20170628
Zillya 20170628
ZoneAlarm by Check Point 20170628
Zoner 20170628
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows command line subsystem.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2017-06-28 18:15:01
Entry Point 0x00001AEA
Number of sections 5
PE sections
PE imports
CreateToolhelp32Snapshot
InterlockedExchange
HeapSetInformation
GetCurrentProcess
TerminateProcess
WriteProcessMemory
InterlockedCompareExchange
GetCurrentProcessId
GetTickCount
OpenProcess
SetUnhandledExceptionFilter
Module32Next
QueryPerformanceCounter
UnhandledExceptionFilter
IsDebuggerPresent
Sleep
GetSystemTimeAsFileTime
ReadProcessMemory
EncodePointer
GetCurrentThreadId
DecodePointer
?uncaught_exception@std@@YA_NXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z
?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
__dllonexit
_controlfp_s
_invoke_watson
_fmode
getchar
_cexit
?terminate@@YAXXZ
_lock
system
_onexit
__initenv
exit
_XcptFilter
_commode
__setusermatherr
_initterm_e
_amsg_exit
_unlock
_crt_debugger_hook
__CxxFrameHandler3
_except_handler4_common
__getmainargs
_initterm
_configthreadlocale
_exit
__set_app_type
GetWindowThreadProcessId
FindWindowA
Number of PE resources by type
RT_MANIFEST 1
Number of PE resources by language
ENGLISH US 1
PE resources
Debug information
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows command line

MachineType
Intel 386 or later, and compatibles

FileTypeExtension
exe

TimeStamp
2017:06:28 19:15:01+01:00

FileType
Win32 EXE

PEType
PE32

CodeSize
4608

LinkerVersion
10.0

EntryPoint
0x1aea

InitializedDataSize
5632

SubsystemVersion
5.1

ImageVersion
0.0

OSVersion
5.1

UninitializedDataSize
0

Compressed bundles
File identification
MD5 3f8352fdfc8355020b3b2ad8076e9ac1
SHA1 3e4bbbc0a469fe1db73ad3317dc94ca8d02c5fdf
SHA256 229aa66058b4e4e45c7538709dc409e6c1df681cfe2d9c91903f7dd6484af4f7
ssdeep
192:Su+9Hnmxl/z8lLgY0D3G3PHkkt+U2RQrvPSzruGQG672qgma:Su+9Hnq/yhf3dPSHuGJ

authentihash 1878ce291a2b66795d614cbef6598811784f5e4dd3df308be1c0be4bd76ae073
imphash bdff201f044d5d74f42ff9eebb90cfe7
Tamaño del fichero 11.0 KB ( 11264 bytes )
Tipo Win32 EXE
Magic literal
PE32 executable for MS Windows (console) Intel 80386 32-bit

TrID Win64 Executable (generic) (61.7%)
Win32 Dynamic Link Library (generic) (14.7%)
Win32 Executable (generic) (10.0%)
OS/2 Executable (generic) (4.5%)
Generic Win/DOS Executable (4.4%)
Tags
peexe

VirusTotal metadata
First submission 2017-06-28 18:16:28 UTC ( hace 1 año, 9 meses )
Last submission 2018-06-20 00:12:26 UTC ( hace 10 meses )
Nombres GunzBR.exe
No hay comentarios. Ningún usuario ha comentado aún. ¡Sea el primero en hacerlo!

Deje su comentario...

?
Enviar comentario

No ha iniciado sesión. Solo los usuarios registrados pueden escribir comentarios.

No hay votos. Nadie ha votado aún. ¡Sea el primero!