× ¡Las cookies están desactivadas! Esta página requiere que las cookies estén activadas para funcionar correctamente
SHA256: f6a74ead6c58e939050580889017f2d5e4a646980509de79c4fb151722388ec1
Nombre: 553c3faf060aaa2c083d66db468c1c70.vir
Detecciones: 53 / 69
Fecha de análisis: 2018-10-09 11:32:00 UTC ( hace 1 semana, 5 días )
Antivirus Resultado Actualización
Ad-Aware Gen:Variant.Barys.52335 20181009
AegisLab Trojan.Win32.Generic.4!c 20181009
AhnLab-V3 Trojan/Win32.Gamarue.C930846 20181009
ALYac Gen:Variant.Barys.52335 20181009
Antiy-AVL Trojan/Win32.AGeneric 20181009
Arcabit Trojan.Barys.DCC6F 20181009
Avast Win32:Malware-gen 20181009
AVG Win32:Malware-gen 20181009
Avira (no cloud) HEUR/AGEN.1015970 20181009
AVware Trojan.Win32.Generic!BT 20180925
Baidu MSIL.Trojan.Kryptik.l 20181009
BitDefender Gen:Variant.Barys.52335 20181009
CAT-QuickHeal Trojan.Generic 20181008
Comodo .UnclassifiedMalware 20181009
CrowdStrike Falcon (ML) malicious_confidence_100% (W) 20180723
Cybereason malicious.f060aa 20180225
Cylance Unsafe 20181009
Cyren W32/Trojan.SHGF-7948 20181009
DrWeb Trojan.PWS.Steam.11112 20181009
Emsisoft Gen:Variant.Barys.52335 (B) 20181009
Endgame malicious (high confidence) 20180730
ESET-NOD32 a variant of MSIL/Injector.ODQ 20181009
F-Secure Gen:Variant.Barys.52335 20181009
Fortinet MSIL/Injector.ODQ!tr 20181009
GData Gen:Variant.Barys.52335 20181009
Ikarus Trojan.MSIL.Inject 20181009
Sophos ML heuristic 20180717
Jiangmin Trojan.Generic.qcgw 20181009
K7AntiVirus Trojan ( 004deb0a1 ) 20181009
K7GW Trojan ( 004deb0a1 ) 20181009
Kaspersky HEUR:Trojan.Win32.Generic 20181009
MAX malware (ai score=100) 20181009
McAfee RDN/Generic.dx 20181009
McAfee-GW-Edition BehavesLike.Win32.Generic.dh 20181009
Microsoft Trojan:Win32/Neurevt.AB 20181009
eScan Gen:Variant.Barys.52335 20181009
NANO-Antivirus Trojan.Win32.Steam.eawmcy 20181009
Palo Alto Networks (Known Signatures) generic.ml 20181009
Panda Trj/GdSda.A 20181008
Qihoo-360 Win32/Trojan.14a 20181009
Rising Trojan.Injector!8.C4 (TFE:C:YssYdOBJu9C) 20181009
SentinelOne (Static ML) static engine - malicious 20180926
Sophos AV Mal/Generic-S 20181009
Symantec Trojan.Betabot 20181009
Tencent Win32.Trojan.Generic.Stui 20181009
TrendMicro TROJ_FRS.0NA003CA16 20181009
TrendMicro-HouseCall TROJ_FRS.0NA003CA16 20181009
VIPRE Trojan.Win32.Generic!BT 20181009
ViRobot Trojan.Win32.Z.Injector.253440.R 20181008
Webroot Trojan.Dropper.Gen 20181009
Yandex Trojan.Agent!b1jzvrs9SfU 20181008
Zillya Trojan.Injector.Win32.367056 20181008
ZoneAlarm by Check Point HEUR:Trojan.Win32.Generic 20181009
Alibaba 20180921
Avast-Mobile 20181008
Babable 20180918
Bkav 20181009
ClamAV 20181009
CMC 20181009
eGambit 20181009
F-Prot 20181009
Kingsoft 20181009
Malwarebytes 20181009
SUPERAntiSpyware 20181006
Symantec Mobile Insight 20181001
TACHYON 20181009
TheHacker 20181008
TotalDefense 20181009
Trustlook 20181009
VBA32 20181009
Zoner 20181008
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2016-02-24 10:38:48
Entry Point 0x00032A9E
Number of sections 3
.NET details
Module Version ID 568b3815-5dc8-4fa4-9fe8-feebee28b8f7
PE sections
Overlays
MD5 4fb4a08fd377bdb92b560a2f300867f9
File type ASCII text
Offset 201216
Size 52224
Entropy 0.00
PE imports
_CorExeMain
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

FileTypeExtension
exe

TimeStamp
2016:02:24 11:38:48+01:00

FileType
Win32 EXE

PEType
PE32

CodeSize
199680

LinkerVersion
8.0

ImageFileCharacteristics
Executable, 32-bit

EntryPoint
0x32a9e

InitializedDataSize
1024

SubsystemVersion
4.0

ImageVersion
0.0

OSVersion
4.0

UninitializedDataSize
0

Compressed bundles
File identification
MD5 553c3faf060aaa2c083d66db468c1c70
SHA1 d8b09de3b0b4968d50ad2d4098d3a991c8c3373f
SHA256 f6a74ead6c58e939050580889017f2d5e4a646980509de79c4fb151722388ec1
ssdeep
3072:Spc/rzo/bIZGafV0hgzi1Q2nHnuFfVrwDmN3mJwUoaoGfi1OW6h4E2nGlOtiaiaN:E0Z708iiA8fVKoeI7EtScOipxnC

authentihash f126f85f5c52ee1099eac023052e320e06e692d43db429e967c2f312bbccecc2
imphash f34d5f2d4577ed6d9ceec516c1f5a744
Tamaño del fichero 247.5 KB ( 253440 bytes )
Tipo Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic CIL Executable (.NET, Mono, etc.) (81.0%)
Win32 Dynamic Link Library (generic) (7.2%)
Win32 Executable (generic) (4.9%)
OS/2 Executable (generic) (2.2%)
Generic Win/DOS Executable (2.2%)
Tags
peexe assembly overlay

VirusTotal metadata
First submission 2016-03-08 06:00:09 UTC ( hace 2 años, 7 meses )
Last submission 2018-10-09 11:32:00 UTC ( hace 1 semana, 5 días )
Nombres 553c3faf060aaa2c083d66db468c1c70
f6a74ead6c58e939050580889017f2d5e4a646980509de79c4fb151722388ec1.exe
aa
553c3faf060aaa2c083d66db468c1c70
bb2old.exe
f6a74ead6c58e939050580889017f2d5e4a646980509de79c4fb151722388ec1
553c3faf060aaa2c083d66db468c1c70.virobj
553c3faf060aaa2c083d66db468c1c70
nNoby.sys
553c3faf060aaa2c083d66db468c1c70
553c3faf060aaa2c083d66db468c1c70.vir
bb2old.exe
BB2OLD.EXE
553c3faf060aaa2c083d66db468c1c70
553c3faf060aaa2c083d66db468c1c70
553c3faf060aaa2c083d66db468c1c70
553c3faf060aaa2c083d66db468c1c70.exe
No hay comentarios. Ningún usuario ha comentado aún. ¡Sea el primero en hacerlo!

Deje su comentario...

?
Enviar comentario

No ha iniciado sesión. Solo los usuarios registrados pueden escribir comentarios.

No hay votos. Nadie ha votado aún. ¡Sea el primero!