× ¡Las cookies están desactivadas! Esta página requiere que las cookies estén activadas para funcionar correctamente
SHA256: e40a88216cc9b284afbe1c753664e5100cdb6ad9000ced9e52ea7fd791783a0e
Nombre: Video-Oynatıcı(2).exe
Detecciones: 28 / 54
Fecha de análisis: 2014-06-26 01:03:54 UTC ( hace 4 años, 10 meses ) Ver el más reciente
Antivirus Resultado Actualización
Ad-Aware Trojan.GenericKD.1723196 20140626
AhnLab-V3 Trojan/Win32.Gen 20140625
AntiVir TR/Downloader.Gen 20140625
AVG Downloader.Generic13.CGHL 20140625
Baidu-International Trojan.JS.ExtenBro.BAgent 20140625
BitDefender Trojan.GenericKD.1723196 20140626
DrWeb Trojan.DownLoader7.49928 20140626
Emsisoft Trojan.GenericKD.1723196 (B) 20140626
ESET-NOD32 a variant of JS/ExtenBro.Agent.M 20140626
F-Secure Trojan.GenericKD.1723196 20140626
Fortinet JS/ExtenBro_Agent.M!tr 20140625
GData Trojan.GenericKD.1723196 20140626
Ikarus Trojan.MSIL.Kilim 20140626
K7AntiVirus Trojan ( 0049ae211 ) 20140625
K7GW Trojan ( 0049ae211 ) 20140625
Kingsoft Win32.Troj.GenericKD.v.(kcloud) 20140626
Malwarebytes Trojan.Agent.WU 20140626
McAfee Artemis!103783B58E82 20140626
McAfee-GW-Edition Artemis!103783B58E82 20140625
Microsoft Trojan:MSIL/Kilim.C 20140625
eScan Trojan.GenericKD.1723196 20140626
Norman Troj_Generic.UOVPY 20140625
Panda Trj/CI.A 20140625
Sophos AV Mal/Generic-S 20140625
Symantec Trojan.Gen 20140626
Tencent Win32.Trojan.Downloader.Ducl 20140626
TrendMicro-HouseCall Suspicious_GEN.F47V0618 20140626
VIPRE Trojan.Win32.Generic!BT 20140626
AegisLab 20140626
Yandex 20140625
Antiy-AVL 20140625
Avast 20140626
Bkav 20140625
ByteHero 20140626
CAT-QuickHeal 20140625
ClamAV 20140625
CMC 20140624
Commtouch 20140626
Comodo 20140626
F-Prot 20140626
Jiangmin 20140625
Kaspersky 20140626
NANO-Antivirus 20140626
nProtect 20140625
Qihoo-360 20140626
Rising 20140623
SUPERAntiSpyware 20140626
TheHacker 20140624
TotalDefense 20140625
TrendMicro 20140626
VBA32 20140625
ViRobot 20140625
Zillya 20140625
Zoner 20140625
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © MaCodTM # 2014

Product Graphic-Flayout
Original name Video-Oynat?c?.exe
Internal name Video-Oynat?c?.exe
File version 1.0.0.0
Description Graphic-Flayout
Comments Graphic-Flayout
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2014-06-17 23:18:56
Entry Point 0x001030DE
Number of sections 4
.NET details
Module Version ID 7c9f4273-89db-4551-b624-c3f18ee25e7f
TypeLib ID b309a42a-2377-4673-98bc-b496353160a1
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_ICON 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 3
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
4.0

Comments
Graphic-Flayout

InitializedDataSize
53248

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.0.0.0

LanguageCode
Neutral

FileFlagsMask
0x003f

FileDescription
Graphic-Flayout

CharacterSet
Unicode

LinkerVersion
8.0

EntryPoint
0x1030de

OriginalFileName
Video-Oynat c .exe

MIMEType
application/octet-stream

LegalCopyright
Copyright MaCodTM # 2014

FileVersion
1.0.0.0

TimeStamp
2014:06:18 00:18:56+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
Video-Oynat c .exe

ProductVersion
1.0.0.0

UninitializedDataSize
0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Graphic-Flayout

CodeSize
1053184

ProductName
Graphic-Flayout

ProductVersionNumber
1.0.0.0

FileTypeExtension
exe

ObjectFileType
Executable application

AssemblyVersion
1.0.0.0

File identification
MD5 103783b58e8288c6fbf96c489efb8bdb
SHA1 aa3fc9a2a693282ebc68f9888c2a51470b2b2b65
SHA256 e40a88216cc9b284afbe1c753664e5100cdb6ad9000ced9e52ea7fd791783a0e
ssdeep
384:Kbc2wxg8jGVQDIc1JhHPF4aFcklBULR8OJYbcuxWGNE5jlXLas9:oc2w5jG6DImzck4xXLv9

authentihash baf027097effc7b20b26d555ea588baddd3a722e280d71f32b5b209fbd159c1d
imphash f34d5f2d4577ed6d9ceec516c1f5a744
Tamaño del fichero 1.1 MB ( 1107456 bytes )
Tipo Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic CIL Executable (.NET, Mono, etc.) (62.0%)
Win64 Executable (generic) (23.4%)
Win32 Dynamic Link Library (generic) (5.5%)
Win32 Executable (generic) (3.8%)
Win16/32 Executable Delphi generic (1.7%)
Tags
peexe assembly

VirusTotal metadata
First submission 2014-06-18 08:52:34 UTC ( hace 4 años, 11 meses )
Last submission 2014-07-05 10:55:37 UTC ( hace 4 años, 10 meses )
Nombres Video-Oynat%C4%B1c%C4%B1.exe
file-7137498_exe
Video-Oynatıcı(2).exe
Video-Oynatıcı.exe
4pgl06Od.kwu
Video-Oynatıcı.exe
Video-Oynat_c_.exe
Video-Oynatıcı (1).exe
Video-Oynat?c?.exe
69921588aa65fa353fc88074468f7541d69a90e2
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
Behaviour characterization
Zemana
dll-injection

No hay comentarios. Ningún usuario ha comentado aún. ¡Sea el primero en hacerlo!

Deje su comentario...

?
Enviar comentario

No ha iniciado sesión. Solo los usuarios registrados pueden escribir comentarios.

No hay votos. Nadie ha votado aún. ¡Sea el primero!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
DNS requests
TCP connections
UDP communications