× Obsługa plików cookie w przeglądarce jest wyłączona! Ta strona wymaga włączonej obsługi plików cookie, aby działać poprawnie
SHA256: 649bc121ad143e238f11b07680007d984eb4eb35818ca4cc18aa3a41ef9af17c
Nazwa pliku: c66479e04caf6ca9d1eb4b2d81a3124a.virus
Współczynnik wykrycia: 43 / 57
Data analizy: 2017-01-03 16:25:32 UTC ( 2 lata, 4 miesiące temu ) Zobacz najnowsze
Antywirus Wynik Uaktualnij
Ad-Aware Gen:Variant.MSILPerseus.27927 20170103
AegisLab Troj.Msil.Tpyn!c 20170103
ALYac Gen:Variant.MSILPerseus.27927 20170103
Antiy-AVL Trojan/MSIL.Tpyn 20170103
Arcabit Trojan.MSILPerseus.D6D17 20170103
Avast Win32:Malware-gen 20170103
AVG Atros3.WIX 20170103
Avira (no cloud) TR/Dropper.MSIL.dfoqs 20170103
AVware Trojan.Win32.Generic!BT 20170103
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9999 20170103
BitDefender Gen:Variant.MSILPerseus.27927 20170103
CAT-QuickHeal Trojan.Dynamer 20170103
CrowdStrike Falcon (ML) malicious_confidence_100% (W) 20161024
DrWeb Trojan.PWS.Stealer.17345 20170103
Emsisoft Gen:Variant.MSILPerseus.27927 (B) 20170103
ESET-NOD32 a variant of MSIL/Kryptik.FQQ 20170103
F-Secure Gen:Variant.MSILPerseus.27927 20170103
Fortinet W32/Tpyn.FQQ!tr 20170103
GData Gen:Variant.MSILPerseus.27927 20170103
Ikarus Trojan.Inject 20170103
Sophos ML trojan.win32.skeeyah.a!rfn 20161216
Jiangmin Trojan.PSW.Fareit.clq 20170103
K7AntiVirus Trojan ( 700000121 ) 20170103
K7GW Trojan ( 700000121 ) 20170103
Kaspersky HEUR:Trojan.MSIL.Tpyn.gen 20170103
Malwarebytes Spyware.PasswordStealer 20170103
McAfee Trojan-FIER!C66479E04CAF 20170103
McAfee-GW-Edition BehavesLike.Win32.Trojan.dc 20170103
Microsoft Trojan:Win32/Dynamer!ac 20170103
eScan Gen:Variant.MSILPerseus.27927 20170103
NANO-Antivirus Trojan.Win32.Stealer.ecpsyp 20170103
Panda Trj/GdSda.A 20170102
Qihoo-360 Win32/Trojan.2bf 20170103
Rising Trojan.Dynamer!8.3A0-yqa32pjqQMS (cloud) 20170103
Sophos AV Mal/Generic-S 20170103
Symantec SAPE.Heur.98937 20170103
Tencent Msil.Trojan.Tpyn.Sxxs 20170103
TrendMicro TROJ_GEN.R0E3C0FF116 20170103
TrendMicro-HouseCall TROJ_GEN.R0E3C0FF116 20170103
VIPRE Trojan.Win32.Generic!BT 20170103
ViRobot Trojan.Win32.Z.Tpyn.945664[h] 20170103
Yandex Trojan.Tpyn! 20170103
Zillya Trojan.Tpyn.Win32.25010 20170102
AhnLab-V3 20170103
Alibaba 20170103
Bkav 20170103
ClamAV 20170103
CMC 20170103
Comodo 20170103
Cyren 20170103
F-Prot 20170103
Kingsoft 20170103
nProtect 20170103
SUPERAntiSpyware 20170103
TheHacker 20170102
TotalDefense 20170103
Trustlook 20170103
VBA32 20170103
WhiteArmor 20161221
Zoner 20170103
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright 1984-2012 Adobe Systems Incorporated and its licensors. All rights reserved.

Product Adobe Collaboration Synchronizer
Original name AdobeCollabSync.exe
File version 10.1.16.13
Description Adobe Collaboration Synchronizer 10.1
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2016-03-29 10:25:36
Entry Point 0x000E745E
Number of sections 3
.NET details
Module Version ID aebc7a26-e10a-4a59-ad51-3f549ff6d2a8
TypeLib ID b5f70fda-c37e-4eda-8c91-c90b70959e0a
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_ICON 2
RT_GROUP_ICON 2
RT_VERSION 1
RT_MANIFEST 1
Number of PE resources by language
NEUTRAL 5
ENGLISH US 1
PE resources
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
8.0

ImageVersion
0.0

FileVersionNumber
10.1.16.13

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x003f

FileDescription
Adobe Collaboration Synchronizer 10.1

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Unknown (000B)

InitializedDataSize
5632

EntryPoint
0xe745e

OriginalFileName
AdobeCollabSync.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright 1984-2012 Adobe Systems Incorporated and its licensors. All rights reserved.

FileVersion
10.1.16.13

LanguageId
0409

TimeStamp
2016:03:29 11:25:36+01:00

FileType
Win32 EXE

PEType
PE32

ProductVersion
10.1.16.13

Signature
Read

EnglishName
English

OSVersion
4.0

FileOS
Unknown (0x50004)

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Adobe Systems Incorporated

CodeSize
939520

FileSubtype
0

ProductVersionNumber
10.1.16.13

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 c66479e04caf6ca9d1eb4b2d81a3124a
SHA1 dd0f848792f5bda20aa4674bc8d59534f37ee10b
SHA256 649bc121ad143e238f11b07680007d984eb4eb35818ca4cc18aa3a41ef9af17c
ssdeep
24576:FeqkueryCgz8+RWBdBqGUSXgrBymFBeenLTJkiyU/gJHbN5gl1:FPz8aWbBq7SXgrgmOOTSkgJHbN

authentihash 14db8a5b6cfa4cdf1dfe40868ddc929735437ec1ed1a9efaba6287137b7a159d
imphash f34d5f2d4577ed6d9ceec516c1f5a744
File size 923.5 KB ( 945664 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic CIL Executable (.NET, Mono, etc.) (81.0%)
Win32 Dynamic Link Library (generic) (7.2%)
Win32 Executable (generic) (4.9%)
OS/2 Executable (generic) (2.2%)
Generic Win/DOS Executable (2.2%)
Tags
peexe assembly

VirusTotal metadata
First submission 2016-12-06 06:16:39 UTC ( 2 lata, 5 miesięcy temu )
Last submission 2018-09-14 14:48:11 UTC ( 8 miesięcy, 1 tydzień temu )
Nazwy plików c66479e04caf6ca9d1eb4b2d81a3124a.virus
AdobeCollabSync.exe
AdobeSystems.exe
Brak komentarzy. Żaden z członków społeczności VirusTotal nie skomentował tego. Bądź pierwszy, by to zrobić!

Skomentuj

?
Dodaj komentarz

Nie jesteś zalogowany. Tylko zarejestrowani użytkownicy mogą dodawać komentarze, zalogować się i mieć swój głos!

Brak ocen. Nikt jeszcze nie oddał swojego głosu, bądź pierwszy!