× I cookies sono disabilitati! Questo sito richiede i cookies abilitati per funzionare correttamente
SHA256: 92ab5cdf666127883d3edcec41b40137585eb86d554fa9c10d823c4bd18f9f9c
Nome del file: track_93203273297329.exe
Rapporto rilevamento: 18 / 54
Data analisi: 2014-10-15 20:25:40 UTC ( 4 anni, 7 mesi fa ) Leggli gli ultimi
Antivirus Risultato Aggiornamento
Ad-Aware Gen:Variant.Graftor.159510 20141015
Avast Win32:Malware-gen 20141015
Avira (no cloud) TR/Dropper.A.29178 20141015
BitDefender Gen:Variant.Graftor.159510 20141015
ByteHero Trojan.Malware.Obscu.Gen.006 20141015
Emsisoft Gen:Variant.Graftor.159510 (B) 20141015
ESET-NOD32 Win32/Filecoder.DI 20141015
F-Secure Gen:Variant.Graftor.159510 20141015
Fortinet W32/Injector.MMTP!tr 20141015
GData Gen:Variant.Graftor.159510 20141015
Malwarebytes Trojan.Zbot.CXgen 20141015
McAfee Artemis!206B5136095C 20141015
McAfee-GW-Edition BehavesLike.Win32.PWSZbot.gh 20141015
eScan Gen:Variant.Graftor.159510 20141015
NANO-Antivirus Trojan.Win32.Filecoder.dgqytf 20141015
Sophos AV Troj/Ransom-AMS 20141015
TrendMicro TROJ_FORUCON.BMC 20141015
TrendMicro-HouseCall TROJ_CRILOCK.SM4 20141015
AegisLab 20141015
Yandex 20141015
AhnLab-V3 20141015
Antiy-AVL 20141015
AVG 20141015
AVware 20141015
Baidu-International 20141015
Bkav 20141015
CAT-QuickHeal 20141015
ClamAV 20141015
CMC 20141013
Comodo 20141015
Cyren 20141015
DrWeb 20141015
F-Prot 20141015
Ikarus 20141015
Jiangmin 20141015
K7AntiVirus 20141015
K7GW 20141015
Kaspersky 20141015
Kingsoft 20141015
Microsoft 20141015
Norman 20141015
nProtect 20141015
Qihoo-360 20141015
Rising 20141015
SUPERAntiSpyware 20141015
Symantec 20141015
Tencent 20141015
TheHacker 20141013
TotalDefense 20141015
VBA32 20141015
VIPRE 20141015
ViRobot 20141015
Zillya 20141015
Zoner 20141014
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright (C) 2006-2010 Google Inc. All Rights Reserved.

Product Google Chrome
Original name chrome.exe
Internal name chrome_exe
File version 20.0.1132.47
Description Google Chrome
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2014-09-25 20:01:53
Entry Point 0x00003688
Number of sections 4
PE sections
PE imports
GetUserNameA
GetLastError
InitializeCriticalSectionAndSpinCount
HeapFree
GetStdHandle
EnterCriticalSection
GetConsoleOutputCP
SetHandleCount
GetModuleFileNameW
GetConsoleCP
GetOEMCP
QueryPerformanceCounter
IsDebuggerPresent
GetTickCount
TlsAlloc
GetEnvironmentStringsW
FlushFileBuffers
GetModuleFileNameA
RtlUnwind
LoadLibraryA
DeleteCriticalSection
GetStartupInfoA
GetConsoleMode
GetLocaleInfoA
GetCurrentProcessId
LCMapStringW
GetCommandLineW
WideCharToMultiByte
UnhandledExceptionFilter
TlsGetValue
MultiByteToWideChar
GetStartupInfoW
FreeEnvironmentStringsW
GetProcAddress
GetStringTypeA
HeapSize
SetStdHandle
SetFilePointer
RaiseException
GetCPInfo
TlsFree
GetModuleHandleA
SetUnhandledExceptionFilter
WriteFile
GetCurrentProcess
CloseHandle
GetSystemTimeAsFileTime
GetACP
HeapReAlloc
GetStringTypeW
GetModuleHandleW
HeapAlloc
TerminateProcess
LCMapStringA
WriteConsoleA
IsValidCodePage
HeapCreate
SetLastError
VirtualQuery
VirtualFree
InterlockedDecrement
Sleep
GetFileType
TlsSetValue
CreateFileA
ExitProcess
GetCurrentThreadId
InterlockedIncrement
VirtualAlloc
WriteConsoleW
LeaveCriticalSection
GetForegroundWindow
GetWindowRect
IsZoomed
GetDesktopWindow
GetCursor
GetWindowLongW
Number of PE resources by type
RT_ICON 1
RT_MESSAGETABLE 1
RT_VXD 1
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 6
PE resources
ExifTool file metadata
ProductShortName
Chrome

SubsystemVersion
5.0

OfficialBuild
1

InitializedDataSize
392192

ImageVersion
0.0

ProductName
Google Chrome

FileVersionNumber
20.0.1132.47

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x0017

ImageFileCharacteristics
No relocs, Executable, 32-bit

CharacterSet
Unicode

LinkerVersion
9.0

FileTypeExtension
exe

OriginalFileName
chrome.exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

CompanyShortName
Google

FileVersion
20.0.1132.47

TimeStamp
2014:09:25 13:01:53-07:00

FileType
Win32 EXE

PEType
PE32

InternalName
chrome_exe

ProductVersion
20.0.1132.47

FileDescription
Google Chrome

OSVersion
5.0

FileOS
Win32

LegalCopyright
Copyright (C) 2006-2010 Google Inc. All Rights Reserved.

MachineType
Intel 386 or later, and compatibles

CompanyName
Google Inc.

CodeSize
60928

FileSubtype
0

ProductVersionNumber
20.0.1132.47

LastChange
144678

EntryPoint
0x3688

ObjectFileType
Executable application

File identification
MD5 206b5136095cb2bcfb902c8ffb218163
SHA1 c7c74e59e23e3c5cb38f77de2a60c36f12554f81
SHA256 92ab5cdf666127883d3edcec41b40137585eb86d554fa9c10d823c4bd18f9f9c
ssdeep
6144:kzxxeLzWoedqagVOh+RY+m2pBvbHQt2ulwWs45N/bvWNqgRe08r:ExeHWowCO23v7S2uj/SNdfa

authentihash 338f5c66d3135f0f6367bc2eb7335a92eb9ef2e098736d542185fc696f4abe50
imphash 380e5390f65e340268c2e7706d44415e
File size 443.5 KB ( 454144 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (41.0%)
Win64 Executable (generic) (36.3%)
Win32 Dynamic Link Library (generic) (8.6%)
Win32 Executable (generic) (5.9%)
OS/2 Executable (generic) (2.6%)
Tags
peexe

VirusTotal metadata
First submission 2014-10-15 09:24:25 UTC ( 4 anni, 7 mesi fa )
Last submission 2019-02-04 07:55:01 UTC ( 3 mesi, 2 settimane fa )
Nomi dei files 92ab5cdf666127883d3edcec41b40137585eb86d554fa9c10d823c4bd18f9f9c.exe
chrome.exe
206b5136095cb2bcfb902c8ffb218163
206b5136095cb2bcfb902c8ffb218163.exe
track_93203273297329.exe
chrome_exe
VirusShare_206b5136095cb2bcfb902c8ffb218163
01000000
vti-rescan
track_93203273297329.exe
A0qXZ4CC.bin
7nX4TdMhl.zip
track_93203273297329.aexe
92ab5cdf666127883d3edcec41b40137585eb86d554fa9c10d823c4bd18f9f9c.exe
206b5136095cb2bcfb902c8ffb218163.exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
Nessun commento. Nessun membro della Comunità di VirusTotal ha commentato questo item, sii il primo a farlo!

Lascia il tuo commento...

?
Posta commento

Non ti sei ancora collegato. Solo gli utenti registrati possono commentare, collegati ed esprimi il tuo giudizio!

Nessun voto. Nessuno ha ancora votato questo item, sii il primo a farlo!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Created processes
Opened mutexes
Runtime DLLs
DNS requests