× Les cookies sont désactivés ! Ce site exige que les cookies soient activés pour fonctionner correctement
SHA256: eb60544246eca1daac8d3a11320bc41876481aea8323324fbf9e4a74981e9958
Nom du fichier : ogb.exe
Ratio de détection : 49 / 68
Date d'analyse : 2019-02-23 10:51:19 UTC (il y a 3 mois)
Antivirus Résultat Mise à jour
Acronis suspicious 20190222
Ad-Aware Trojan.GenericKD.30962968 20190226
AhnLab-V3 Trojan/Win32.MSIL.R230107 20190226
ALYac Trojan.GenericKD.30962968 20190226
Antiy-AVL Trojan[Backdoor]/MSIL.Agent 20190226
Arcabit Trojan.Generic.D1D87518 20190226
Avast Win32:Malware-gen 20190226
AVG Win32:Malware-gen 20190226
Avira (no cloud) HEUR/AGEN.1033304 20190226
BitDefender Trojan.GenericKD.30962968 20190226
Comodo Malware@#o6nhhz29grqn 20190226
CrowdStrike Falcon (ML) win/malicious_confidence_100% (W) 20190212
Cybereason malicious.a17063 20190109
Cylance Unsafe 20190226
Cyren W32/Trojan.GHRB-3977 20190226
DrWeb Trojan.Siggen7.42178 20190226
Emsisoft Trojan.GenericKD.30962968 (B) 20190226
Endgame malicious (high confidence) 20190215
ESET-NOD32 a variant of MSIL/Kryptik.OIM 20190226
F-Secure Heuristic.HEUR/AGEN.1033304 20190226
Fortinet MSIL/Kryptik.OIM!tr 20190226
GData Trojan.GenericKD.30962968 20190226
Ikarus Trojan.Inject 20190226
Sophos ML heuristic 20181128
K7AntiVirus Trojan ( 0053707b1 ) 20190226
K7GW Trojan ( 0053707b1 ) 20190226
Kaspersky HEUR:Trojan.MSIL.Agent.gen 20190226
Malwarebytes Trojan.PasswordStealer.MSIL 20190226
MAX malware (ai score=95) 20190226
McAfee Packed-ZI!9AC2037A1706 20190226
McAfee-GW-Edition BehavesLike.Win32.Generic.gc 20190226
Microsoft VirTool:MSIL/Injector.UG!bit 20190226
eScan Trojan.GenericKD.30962968 20190226
NANO-Antivirus Trojan.Win32.Kryptik.fdyyil 20190226
Palo Alto Networks (Known Signatures) generic.ml 20190226
Panda Trj/CI.A 20190226
Qihoo-360 Win32/Trojan.afc 20190226
SentinelOne (Static ML) static engine - malicious 20190203
Sophos AV Mal/Generic-S 20190226
Symantec Trojan Horse 20190226
Tencent Win32.Trojan.Inject.Auto 20190226
TheHacker Trojan/Kryptik.oim 20190225
Trapmine malicious.high.ml.score 20190123
TrendMicro TSPY_PASTIL.THFBOAH 20190226
TrendMicro-HouseCall TSPY_PASTIL.THFBOAH 20190226
VBA32 TScope.Trojan.MSIL 20190226
Webroot W32.Malware.Gen 20190226
Yandex Trojan.Agent!TdYtfrFuLoA 20190226
ZoneAlarm by Check Point HEUR:Trojan.MSIL.Agent.gen 20190226
AegisLab 20190226
Alibaba 20180921
Avast-Mobile 20190226
Babable 20180918
Baidu 20190215
CAT-QuickHeal 20190225
ClamAV 20190226
CMC 20190226
eGambit 20190226
Jiangmin 20190226
Kingsoft 20190226
Rising 20190226
SUPERAntiSpyware 20190220
Symantec Mobile Insight 20190220
TACHYON 20190226
TotalDefense 20190226
Trustlook 20190226
ViRobot 20190226
Zillya 20190226
Zoner 20190226
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2018 Crown Cork & Seal Co. Inc.

Product Application Server Command Administration Interface
Original name ogb.exe
Internal name ogb.exe
File version 14.12.10.2
Description Application Server Command Administration Interface
Comments g2emncao3dx
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2017-09-01 13:36:42
Entry Point 0x0007200A
Number of sections 5
.NET details
Module Version ID 8a99acc7-637c-4f61-8c51-19a4c60756bc
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_MANIFEST 1
RT_VERSION 1
Number of PE resources by language
NEUTRAL 2
PE resources
ExifTool file metadata
SubsystemVersion
4.0

Comments
g2emncao3dx

LinkerVersion
8.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
14.12.10.2

LanguageCode
Neutral

FileFlagsMask
0x003f

FileDescription
Application Server Command Administration Interface

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Unicode

InitializedDataSize
5632

EntryPoint
0x7200a

OriginalFileName
ogb.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright 2018 Crown Cork & Seal Co. Inc.

FileVersion
14.12.10.2

TimeStamp
2017:09:01 15:36:42+02:00

FileType
Win32 EXE

PEType
PE32

InternalName
ogb.exe

ProductVersion
14.12.10.2

UninitializedDataSize
0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Crown Cork & Seal Co. Inc.

CodeSize
431104

ProductName
Application Server Command Administration Interface

ProductVersionNumber
14.12.10.2

FileTypeExtension
exe

ObjectFileType
Executable application

AssemblyVersion
0.0.0.0

File identification
MD5 9ac2037a17063eea104f6a0f11238776
SHA1 f7033d28b4670182c99a9e00aaa49b254b938c33
SHA256 eb60544246eca1daac8d3a11320bc41876481aea8323324fbf9e4a74981e9958
ssdeep
12288:fBXx9K7Yd18LDcdTBsz8b7OAZUqBswhbws4:fBB9KUz8LDcMQbhuoEs4

authentihash 379a274a7a19524020ac63b04a2eb3ce541fea22b2e1ecba05ba66a5a6f74e09
imphash f34d5f2d4577ed6d9ceec516c1f5a744
File size 427.5 KB ( 437760 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Win32 Dynamic Link Library (generic) (34.2%)
Win32 Executable (generic) (23.4%)
Win16/32 Executable Delphi generic (10.7%)
OS/2 Executable (generic) (10.5%)
Generic Win/DOS Executable (10.4%)
Tags
peexe assembly

VirusTotal metadata
First submission 2018-06-12 09:04:05 UTC (il y a 11 mois, 2 semaines)
Last submission 2018-07-26 11:03:12 UTC (il y a 10 mois)
Noms du fichier output.113435747.txt
output.113432586.txt
ogb.exe
DVBNMHJYTRE3W456U (14).EXE
9ac2037a17063eea104f6a0f11238776
output.113435606.txt
output.113432585.txt
officess.gxe
a2dafbeb06779bb2bad65d3f66f24b10fecc6bb8
Aucun commentaire. Aucun membre de la communauté VirusTotal n'a encore commenté cet élément, soyez le premier à le faire !

Laissez votre commentaire...

?
Poster un commentaire

Vous n'êtes pas connecté. Seuls les utilisateurs enregistrés peuvent laisser des commentaires, connectez-vous pour commenter !

Aucun vote. Personne n'a encore voté pour cet élément, soyez le premier à le faire !