× Les cookies sont désactivés ! Ce site exige que les cookies soient activés pour fonctionner correctement
SHA256: fd11e035295639b19dfe418514c91159b3f50ea8dc350c36b63a9363e52f4533
Nom du fichier : 87aee37bf3a439092a819a1f3bb189e8
Ratio de détection : 10 / 57
Date d'analyse : 2016-11-26 12:36:05 UTC (il y a 1 an) Voir les derniers
Antivirus Résultat Mise à jour
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9999 20161126
Bkav W32.eHeur.Malware09 20161126
CrowdStrike Falcon (ML) malicious_confidence_100% (D) 20161024
Cyren W32/Cerber.F.gen!Eldorado 20161126
ESET-NOD32 a variant of Win32/Kryptik.FKMG 20161126
F-Prot W32/Cerber.F.gen!Eldorado 20161126
Sophos ML trojan.win32.skeeyah.a!rfn 20161018
Qihoo-360 HEUR/QVM20.1.0000.Malware.Gen 20161126
Rising Malware.Generic!8qyDySuvA5S@2 (thunder) 20161126
Symantec Heur.AdvML.B 20161126
Ad-Aware 20161126
AegisLab 20161126
AhnLab-V3 20161125
Alibaba 20161125
ALYac 20161126
Antiy-AVL 20161126
Arcabit 20161126
Avast 20161126
AVG 20161126
Avira (no cloud) 20161126
AVware 20161126
BitDefender 20161126
CAT-QuickHeal 20161125
ClamAV 20161126
CMC 20161126
Comodo 20161126
DrWeb 20161126
Emsisoft 20161126
F-Secure 20161126
Fortinet 20161126
GData 20161126
Ikarus 20161126
Jiangmin 20161124
K7AntiVirus 20161126
K7GW 20161126
Kaspersky 20161126
Kingsoft 20161126
Malwarebytes 20161126
McAfee 20161126
McAfee-GW-Edition 20161126
Microsoft 20161126
eScan 20161126
NANO-Antivirus 20161126
nProtect 20161126
Panda 20161126
Sophos AV 20161126
SUPERAntiSpyware 20161126
Tencent 20161126
TheHacker 20161126
TotalDefense 20161126
TrendMicro 20161126
TrendMicro-HouseCall 20161126
Trustlook 20161126
VBA32 20161125
VIPRE 20161126
ViRobot 20161126
WhiteArmor 20161125
Yandex 20161125
Zillya 20161125
Zoner 20161126
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
© 2006 Microsoft Corporation. All rights reserved.

Product 2007 Microsoft Office system
Original name MsoHtmEd.Exe
Internal name HEV
File version 12.0.6500.5000
Description 2007 Microsoft Office component
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2016-11-27 12:22:02
Entry Point 0x000044F0
Number of sections 4
PE sections
PE imports
RegCreateKeyExW
RegFlushKey
RegCloseKey
RegRestoreKeyW
RegSetValueExW
RegUnLoadKeyW
RegQueryInfoKeyW
RegConnectRegistryW
RegDeleteValueW
RegOpenKeyExW
RegEnumKeyExW
RegSaveKeyW
RegEnumValueW
RegOpenKeyW
RegDeleteKeyW
RegReplaceKeyW
RegQueryValueExW
RegLoadKeyW
ImageList_BeginDrag
ImageList_SetBkColor
ImageList_GetImageInfo
FlatSB_SetScrollInfo
ImageList_SetImageCount
FlatSB_GetScrollInfo
ImageList_DragMove
ImageList_Remove
ImageList_GetDragImage
ImageList_DrawEx
ImageList_SetIconSize
ImageList_Write
ImageList_GetImageCount
ImageList_Replace
ImageList_SetOverlayImage
ImageList_Destroy
_TrackMouseEvent
ImageList_Draw
ImageList_GetIconSize
ImageList_DragLeave
ImageList_GetBkColor
ImageList_GetIcon
FlatSB_SetScrollPos
ImageList_ReplaceIcon
ImageList_DragEnter
ImageList_Add
FlatSB_GetScrollPos
ImageList_DragShowNolock
ImageList_Create
ImageList_Read
ImageList_Copy
ImageList_LoadImageW
ImageList_EndDrag
SetDIBits
GetTextMetricsW
SetMapMode
GetWindowOrgEx
GetEnhMetaFileBits
GetPaletteEntries
GetTextExtentPointA
CopyEnhMetaFileW
EngQueryLocalTime
SetPixel
EndDoc
STROBJ_vEnumStart
IntersectClipRect
AngleArc
GetTextExtentPointW
CreatePalette
CreateDIBitmap
GetDIBits
SetTextAlign
StretchBlt
StretchDIBits
ArcTo
GdiPlayDCScript
Pie
CloseMetaFile
Arc
SetBkColor
SetWinMetaFileBits
GetDIBColorTable
DeleteEnhMetaFile
CreateFontIndirectW
SetStretchBltMode
EnumFontsW
GetCurrentPositionEx
LPtoDP
UpdateColors
GetBitmapBits
GetBrushOrgEx
ExcludeClipRect
SetBkMode
EnumFontFamiliesW
GdiInitializeLanguagePack
BitBlt
GdiConvertPalette
CreateEnhMetaFileW
SetAbortProc
FrameRgn
CreateBrushIndirect
SelectPalette
StartDocW
CloseEnhMetaFile
SetROP2
EndPage
GdiEntry9
SetDIBColorTable
GdiAddGlsBounds
DeleteObject
CreateCompatibleDC
GetRelAbs
PatBlt
GetClipBox
Rectangle
GetDeviceCaps
PaintRgn
LineTo
DeleteDC
SetEnhMetaFileBits
GetSystemPaletteEntries
StartPage
GetObjectW
CreateDCW
GetEnhMetaFileDescriptionW
CreateDIBPatternBrushPt
ExtTextOutW
CreateBitmap
RectVisible
GetStockObject
PlayEnhMetaFile
UnrealizeObject
GdiFlush
RoundRect
CreateScalableFontResourceW
GdiConvertFont
GetWinMetaFileBits
RealizePalette
GetEnhMetaFileHeader
SetWindowOrgEx
GdiIsMetaPrintDC
GetViewportExtEx
GetTextExtentPoint32W
Polygon
CreateHalftonePalette
GetRgnBox
SaveDC
CreateICW
MaskBlt
GetEnhMetaFilePaletteEntries
RestoreDC
GetPixel
CreateDIBPatternBrush
GetTextExtentExPointW
CreateDIBSection
SetTextColor
ExtFloodFill
MoveToEx
EnumFontFamiliesExW
SetViewportOrgEx
EnumFontFamiliesExA
PolyBezierTo
CreateFontW
PolyBezier
Chord
SetBrushOrgEx
CreateRectRgn
SelectObject
CreateCompatibleBitmap
CreateSolidBrush
Polyline
CreatePenIndirect
AbortDoc
Ellipse
SetThreadLocale
GetStdHandle
GetDriveTypeW
GetComputerNameA
GetFileAttributesA
WaitForSingleObject
GetDriveTypeA
EnumUILanguagesW
GetHandleInformation
ScrollConsoleScreenBufferW
GetFileAttributesW
GetLocalTime
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
LocalAlloc
SetTimeZoneInformation
UnhandledExceptionFilter
SetErrorMode
RequestWakeupLatency
lstrcatW
GetLocaleInfoW
GetFullPathNameA
FindNextVolumeMountPointA
GetCPInfo
GetDiskFreeSpaceW
InterlockedExchange
WriteFile
MoveFileA
GetThreadPriority
SetFileAttributesA
FreeLibrary
LocalFree
FormatMessageW
ResumeThread
InitializeCriticalSection
LoadResource
SetLocaleInfoA
GetStringTypeExW
GetLogicalDriveStringsW
FindClose
TlsGetValue
GetFullPathNameW
SetLastError
CreateTapePartition
GetUserDefaultUILanguage
GetSystemTime
GlobalFindAtomW
lstrcpynW
GetModuleFileNameW
TryEnterCriticalSection
IsDebuggerPresent
ExitProcess
GetUserDefaultLCID
VerLanguageNameW
GetModuleFileNameA
lstrcmpiW
InterlockedExchangeAdd
SetThreadPriority
WriteProfileStringA
EnumSystemLocalesW
LoadLibraryExW
MultiByteToWideChar
EnumCalendarInfoW
SetFilePointerEx
GetCPInfoExW
GetProcessShutdownParameters
GetModuleHandleA
LockFileEx
CreateThread
GetSystemDefaultUILanguage
GetExitCodeThread
PeekConsoleInputW
IsProcessorFeaturePresent
ExitThread
WaitForMultipleObjectsEx
FindAtomW
FindCloseChangeNotification
FreeUserPhysicalPages
SetCurrentDirectoryW
VirtualQuery
VirtualQueryEx
SetEndOfFile
GetCurrentThreadId
MulDiv
GlobalAddAtomW
EnterCriticalSection
LoadLibraryW
GetVersionExW
SetEvent
QueryPerformanceCounter
GetTickCount
GetVersionExA
LoadLibraryA
RtlUnwind
GlobalSize
GetNamedPipeInfo
GetModuleHandleW
GetDateFormatW
GetStartupInfoW
GetProcAddress
GetComputerNameW
EnumResourceNamesW
CompareStringW
CompareStringA
GetSystemDefaultLCID
CreateWaitableTimerA
FindFirstFileW
IsValidLocale
lstrcmpW
GlobalLock
CreateEventW
CreateFileW
SetVolumeLabelA
TlsSetValue
LeaveCriticalSection
GetLastError
GlobalDeleteAtom
GetShortPathNameW
GetSystemInfo
lstrlenA
GetVolumePathNameA
GlobalFree
FindResourceW
GetThreadLocale
GlobalUnlock
GlobalAlloc
lstrlenW
Process32NextW
VirtualFree
_lwrite
SizeofResource
GetCurrentProcessId
LockResource
GetCommandLineW
GetCurrentDirectoryA
InterlockedCompareExchange
GetCurrentThread
SuspendThread
RaiseException
SetFilePointer
ReadFile
CloseHandle
GetACP
GetVersion
FreeResource
SwitchToThread
IsBadHugeWritePtr
WideCharToMultiByte
SetConsoleMode
GetDefaultCommConfigW
CreateProcessW
Sleep
VirtualAlloc
ResetEvent
ShellAboutA
ShellExecuteW
DragQueryFileAorW
SHGetFileInfoW
Shell_NotifyIconW
StrCmpNA
RedrawWindow
GetMessagePos
SetWindowRgn
LoadBitmapW
EnableScrollBar
DestroyMenu
PostQuitMessage
GetForegroundWindow
SetWindowPos
IsWindow
DispatchMessageA
EndPaint
WindowFromPoint
DrawIcon
GetMessageTime
SetMenuItemInfoW
SendMessageW
SetActiveWindow
GetMenuItemID
GetCursorPos
ReleaseDC
GetMenuStringW
GetMenu
EndMenu
SendMessageA
UnregisterClassW
GetClientRect
GetMenuItemInfoW
DefMDIChildProcW
DrawTextW
SetScrollPos
CallNextHookEx
GetSysColor
GetKeyboardState
SetMessageExtraInfo
ClientToScreen
GetTopWindow
GetWindowTextW
GetAltTabInfo
MsgWaitForMultipleObjects
ScrollWindow
CopyImage
PtInRect
DrawEdge
GetParent
UpdateWindow
GetPropW
EqualRect
SetClassLongW
EnumWindows
ShowWindow
FlashWindowEx
SetPropW
GetDesktopWindow
PeekMessageW
TranslateMDISysAccel
EnableWindow
SetWindowPlacement
CharUpperW
PeekMessageA
TranslateMessage
IsWindowEnabled
GetWindow
SetDebugErrorLevel
ActivateKeyboardLayout
RegisterClassW
GetIconInfo
SetParent
SetClipboardData
IsZoomed
GetWindowPlacement
LoadStringW
SetWindowLongW
GetKeyboardLayoutList
DrawMenuBar
IsIconic
GetSubMenu
SetTimer
GetActiveWindow
IsDialogMessageW
FillRect
EnumThreadWindows
MonitorFromPoint
CreateAcceleratorTableW
GetSysColorBrush
IsWindowUnicode
CreateWindowExW
GetWindowLongW
GetUserObjectSecurity
IsChild
IsDialogMessageA
MapWindowPoints
RegisterWindowMessageW
GetMonitorInfoW
BeginPaint
OffsetRect
DefWindowProcW
GetScrollPos
CopyIcon
GetKeyboardLayoutNameW
KillTimer
MapVirtualKeyW
GetKeyNameTextW
DefMDIChildProcA
GetClipboardData
GetClassInfoExW
GetSystemMetrics
EnableMenuItem
SetScrollRange
GetWindowRect
InflateRect
SetCapture
ReleaseCapture
EnumChildWindows
GetScrollRange
GetMessageExtraInfo
CharLowerW
PostMessageW
InvalidateRect
DrawTextExW
WaitMessage
CreatePopupMenu
ShowCaret
DrawFocusRect
GetClassLongW
CharNextW
GetLastActivePopup
DrawIconEx
CharUpperBuffW
SetWindowTextW
GetDCEx
GetDlgItem
RemovePropW
ScreenToClient
LoadIconA
TrackPopupMenu
GetMenuItemCount
IsDlgButtonChecked
GetMenuState
ShowOwnedPopups
LoadCursorW
GetSystemMenu
FindWindowExW
GetDC
InsertMenuW
SetForegroundWindow
SetFocus
OpenClipboard
EmptyClipboard
CharLowerBuffW
IntersectRect
GetScrollInfo
HideCaret
GetKeyboardLayout
FindWindowW
GetCapture
GetDlgCtrlID
GetShellWindow
MessageBeep
RemoveMenu
GetWindowThreadProcessId
ShowScrollBar
MessageBoxW
DefFrameProcW
DrawFrameControl
UnhookWindowsHookEx
LoadIconW
MessageBoxIndirectA
LoadKeyboardLayoutW
MessageBoxA
GetWindowDC
DestroyCursor
AdjustWindowRectEx
GetFocus
MsgWaitForMultipleObjectsEx
DispatchMessageW
RegisterClipboardFormatW
SetScrollInfo
GetKeyState
DestroyIcon
EnumDisplayMonitors
GetAltTabInfoA
IsWindowVisible
SetCursorPos
SystemParametersInfoW
MonitorFromWindow
FrameRect
SetRect
DeleteMenu
MonitorFromRect
CreateIcon
CallWindowProcW
GetClassNameW
DestroyWindow
GetClassInfoW
SetWindowsHookExW
GetCursor
SendMessageTimeoutW
CreateMenu
InsertMenuItemW
CloseClipboard
CheckMenuItem
SetMenu
SetCursor
ProgIDFromCLSID
OleUninitialize
OleDraw
IsEqualGUID
OleInitialize
CoGetClassObject
CreateStreamOnHGlobal
IsAccelerator
CoCreateInstance
OleRegEnumVerbs
StringFromCLSID
CoUninitialize
OleSetMenuDescriptor
CoInitialize
CoTaskMemFree
CoTaskMemAlloc
Number of PE resources by type
RT_MANIFEST 1
RT_VERSION 1
Number of PE resources by language
ENGLISH US 2
PE resources
ExifTool file metadata
UninitializedDataSize
0

LinkerVersion
9.0

ImageVersion
0.0

ProductName
2007 Microsoft Office system

FileVersionNumber
12.0.6500.5000

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Windows, Latin1

InitializedDataSize
164352

FileTypeExtension
exe

OriginalFileName
MsoHtmEd.Exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

LegalTrademarks2
Windows is a registered trademark of Microsoft Corporation.

FileVersion
12.0.6500.5000

LegalTrademarks1
Microsoft is a registered trademark of Microsoft Corporation.

TimeStamp
2016:11:27 13:22:02+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
HEV

SubsystemVersion
5.0

ProductVersion
12.0.6500.5000

FileDescription
2007 Microsoft Office component

OSVersion
5.0

FileOS
Windows NT 32-bit

LegalCopyright
2006 Microsoft Corporation. All rights reserved.

MachineType
Intel 386 or later, and compatibles

CompanyName
Microsoft Corporation

CodeSize
313856

FileSubtype
0

ProductVersionNumber
12.0.6500.0

EntryPoint
0x44f0

ObjectFileType
Executable application

File identification
MD5 87aee37bf3a439092a819a1f3bb189e8
SHA1 d1d24a16f7dde7dfe78800e9dd82ff9f39d58dcf
SHA256 fd11e035295639b19dfe418514c91159b3f50ea8dc350c36b63a9363e52f4533
ssdeep
6144:K/0cVJGF+f8ogsS92T6Vt28ZO9YKU5OZFfKNjhmmhqY0KK7Xv:K/NaFHJsmt2XJRkNhmHKK

authentihash 63fed1a968bcdd5100eb7ba09e3d840b7596ba5cdc17b89542acaa4d374c471d
imphash 92f7d3479b3d61ff3ff51018dc6f6914
File size 468.0 KB ( 479232 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (35.8%)
Win64 Executable (generic) (31.7%)
Windows screen saver (15.0%)
Win32 Dynamic Link Library (generic) (7.5%)
Win32 Executable (generic) (5.1%)
Tags
peexe

VirusTotal metadata
First submission 2016-11-26 12:36:05 UTC (il y a 1 an)
Last submission 2017-01-24 11:10:48 UTC (il y a 10 mois, 3 semaines)
Noms du fichier 6.exe
HEV
f4533.exe
Devityle.exe
MsoHtmEd.Exe
Aucun commentaire. Aucun membre de la communauté VirusTotal n'a encore commenté cet élément, soyez le premier à le faire !

Laissez votre commentaire...

?
Poster un commentaire

Vous n'êtes pas connecté. Seuls les utilisateurs enregistrés peuvent laisser des commentaires, connectez-vous pour commenter !

Aucun vote. Personne n'a encore voté pour cet élément, soyez le premier à le faire !
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Runtime DLLs
UDP communications