× ¡Las cookies están desactivadas! Esta página requiere que las cookies estén activadas para funcionar correctamente
SHA256: 9da00cecb9edeb865b6151a320fb9fb36e311e18fb81d9cef6132702a479288a
Detecciones: 35 / 66
Fecha de análisis: 2018-01-02 14:37:05 UTC ( hace 1 año, 4 meses ) Ver el más reciente
Antivirus Resultado Actualización
AegisLab Troj.Msil.Generic!c 20180102
Antiy-AVL Trojan/MSIL.Kryptik 20180102
Arcabit Trojan.Generic.D60BF5F 20180102
Avast FileRepMalware 20180102
AVG FileRepMalware 20180102
Avira (no cloud) TR/Dropper.MSIL.cjspx 20180102
AVware Trojan.Win32.Generic!BT 20180102
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9998 20180102
BitDefender Trojan.GenericKD.6340447 20180102
Bkav W32.FamVT.ExpiroPC.PE 20180102
CAT-QuickHeal Trojan.MSIL 20180102
CrowdStrike Falcon (ML) malicious_confidence_100% (W) 20171016
Cybereason malicious.0d790a 20171103
Cylance Unsafe 20180102
Emsisoft Trojan.GenericKD.6340447 (B) 20180102
Endgame malicious (high confidence) 20171130
ESET-NOD32 a variant of MSIL/Kryptik.HUT 20180102
F-Secure Trojan.GenericKD.6340447 20180102
Fortinet MSIL/Kryptik.HUT!tr 20180102
GData Trojan.GenericKD.6340447 20180102
Sophos ML heuristic 20170914
Kaspersky HEUR:Trojan.MSIL.Generic 20180102
McAfee Artemis!41C23F9088A5 20180102
McAfee-GW-Edition BehavesLike.Win32.Fareit.tc 20180102
Microsoft VirTool:MSIL/Subti.N 20180102
eScan Trojan.GenericKD.6340447 20180102
Palo Alto Networks (Known Signatures) generic.ml 20180102
Panda Trj/GdSda.A 20180101
Qihoo-360 Win32/Trojan.7c5 20180102
SentinelOne (Static ML) static engine - malicious 20171224
Sophos AV Mal/Generic-S 20180102
Symantec Trojan.Gen.2 20180101
TrendMicro-HouseCall TROJ_GEN.R002H0DA118 20180102
VIPRE Trojan.Win32.Generic!BT 20180102
ZoneAlarm by Check Point HEUR:Trojan.MSIL.Generic 20180102
Ad-Aware 20171225
AhnLab-V3 20180102
Alibaba 20180102
ALYac 20180102
Avast-Mobile 20180102
ClamAV 20180102
CMC 20180102
Comodo 20180102
Cyren 20180102
DrWeb 20180102
eGambit 20180102
F-Prot 20180102
Jiangmin 20180102
K7AntiVirus 20180102
K7GW 20180102
Kingsoft 20180102
Malwarebytes 20180102
MAX 20180102
NANO-Antivirus 20180102
nProtect 20180102
Rising 20171230
SUPERAntiSpyware 20180102
Tencent 20180102
TheHacker 20171229
TrendMicro 20180102
Trustlook 20180102
VBA32 20171229
ViRobot 20180102
Webroot 20180102
WhiteArmor 20171226
Yandex 20171229
Zillya 20180102
Zoner 20180102
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
dMyh1O9u1xCZenC5tTDdTE8ksnxsrMPS1dzSOBs68JnhMU

Product iu7TDcBTj7lPjYxPdNrZLq6HCrEPJy9U5iDyx4bsRHZ83Z
Original name jT2.exe
Internal name jT2.exe
File version 73.8.87.95
Description OjzwBYrfpthJ007IHmuYW7Tdg42fmtFKTMEmp48NxQmgeE
Comments R1UkHdBiIiakLO2fN78VGpuwhkQ2eeT8VhPSemFBLNPZpe
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2017-12-24 02:26:53
Entry Point 0x0017800A
Number of sections 5
.NET details
Module Version ID 6a491db3-d08f-4f8b-ad19-6dde9f8bde5b
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_ICON 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 3
PE resources
ExifTool file metadata
SubsystemVersion
4.0

Comments
R1UkHdBiIiakLO2fN78VGpuwhkQ2eeT8VhPSemFBLNPZpe

LinkerVersion
8.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
73.8.87.95

LanguageCode
Neutral

FileFlagsMask
0x003f

FileDescription
OjzwBYrfpthJ007IHmuYW7Tdg42fmtFKTMEmp48NxQmgeE

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Unicode

InitializedDataSize
1013248

EntryPoint
0x17800a

OriginalFileName
jT2.exe

MIMEType
application/octet-stream

LegalCopyright
dMyh1O9u1xCZenC5tTDdTE8ksnxsrMPS1dzSOBs68JnhMU

FileVersion
73.8.87.95

TimeStamp
2017:12:24 03:26:53+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
jT2.exe

ProductVersion
73.8.87.95

UninitializedDataSize
0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
8JoGRC1SNSV3V210NtWIsqbObXQkmqIjaV6szXS102w1Fj

CodeSize
496640

ProductName
iu7TDcBTj7lPjYxPdNrZLq6HCrEPJy9U5iDyx4bsRHZ83Z

ProductVersionNumber
73.8.87.95

FileTypeExtension
exe

ObjectFileType
Executable application

AssemblyVersion
37.24.2.79

File identification
MD5 41c23f9088a58d2f311d0f4afca22b8f
SHA1 46bb0b10d790a3f21867308e7dcdeb06784a1570
SHA256 9da00cecb9edeb865b6151a320fb9fb36e311e18fb81d9cef6132702a479288a
ssdeep
24576:10wuetG29zDX6AaAVFK3sEJyRS6HwSkz4jZXvLO/NjpjnhNmIZszlc+SsFepl9L8:1H/zDXrasQ8EJWntlv6Ntb9ZsN9e9LPU

authentihash ee0e8d9900546df24a2b2cace57de7e921511348b0a61c2645e4171c1b0bc397
imphash f34d5f2d4577ed6d9ceec516c1f5a744
Tamaño del fichero 1.4 MB ( 1510912 bytes )
Tipo Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Win32 Dynamic Link Library (generic) (34.2%)
Win32 Executable (generic) (23.4%)
Win16/32 Executable Delphi generic (10.7%)
OS/2 Executable (generic) (10.5%)
Generic Win/DOS Executable (10.4%)
Tags
peexe assembly

VirusTotal metadata
First submission 2018-01-01 15:03:48 UTC ( hace 1 año, 4 meses )
Last submission 2018-05-24 15:54:06 UTC ( hace 1 año )
Nombres jT2.exe
No hay comentarios. Ningún usuario ha comentado aún. ¡Sea el primero en hacerlo!

Deje su comentario...

?
Enviar comentario

No ha iniciado sesión. Solo los usuarios registrados pueden escribir comentarios.

No hay votos. Nadie ha votado aún. ¡Sea el primero!