× Cookies estão desativados! Este site requer que os cookies estejam habilitados para funcionar corretamente
SHA256: f0ebbb985ebea1d3ad18619001978cbe3c717a7e4d582fded5231ec88658d365
Nome do arquivo: Wall Jump.exe
Taxa de detecção: 1 / 55
Data da análise: 2015-11-29 20:54:12 UTC ( 3 anos, 4 meses atrás ) Visualizar últimos
Antivírus Resultado Atualização
ViRobot Trojan.Win32.AutoHK.216345[h] 20151129
Ad-Aware 20151129
AegisLab 20151129
Yandex 20151129
AhnLab-V3 20151129
Alibaba 20151127
ALYac 20151129
Antiy-AVL 20151129
Arcabit 20151129
Avast 20151129
AVG 20151129
Avira (no cloud) 20151129
AVware 20151129
Baidu-International 20151129
BitDefender 20151129
Bkav 20151128
ByteHero 20151129
CAT-QuickHeal 20151128
ClamAV 20151129
CMC 20151127
Comodo 20151129
Cyren 20151129
DrWeb 20151129
Emsisoft 20151129
ESET-NOD32 20151129
F-Prot 20151129
F-Secure 20151128
Fortinet 20151129
GData 20151129
Ikarus 20151129
Jiangmin 20151128
K7AntiVirus 20151129
K7GW 20151129
Kaspersky 20151129
Malwarebytes 20151129
McAfee 20151129
McAfee-GW-Edition 20151129
Microsoft 20151129
eScan 20151129
NANO-Antivirus 20151129
nProtect 20151127
Panda 20151129
Qihoo-360 20151129
Rising 20151129
Sophos AV 20151129
SUPERAntiSpyware 20151129
Symantec 20151129
Tencent 20151129
TheHacker 20151127
TrendMicro 20151129
TrendMicro-HouseCall 20151129
VBA32 20151129
VIPRE 20151129
Zillya 20151127
Zoner 20151129
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
File version 1, 0, 48, 05
Packers identified
F-PROT AutoIt, UPX_LZMA
PEiD UPX 2.93 [LZMA] -> Markus Oberhumer, Laszlo Molnar & John Reiser
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2009-09-25 18:57:32
Entry Point 0x00073010
Number of sections 3
PE sections
Overlays
MD5 af58f6616ec54f2a57af4766a023f853
File type data
Offset 216064
Size 1268
Entropy 7.82
PE imports
RegCloseKey
BitBlt
VirtualFree
ExitProcess
VirtualProtect
LoadLibraryA
VirtualAlloc
GetProcAddress
OleLoadPicture
DragFinish
VerQueryValueA
mixerOpen
WSACleanup
GetOpenFileNameA
CoInitialize
Number of PE resources by type
RT_ICON 7
RT_GROUP_ICON 7
RT_DIALOG 1
RT_MANIFEST 1
RT_MENU 1
RT_ACCELERATOR 1
RT_VERSION 1
Number of PE resources by language
ENGLISH US 19
PE resources
ExifTool file metadata
UninitializedDataSize
270336

InitializedDataSize
16384

ImageVersion
0.0

FileVersionNumber
1.0.48.5

LanguageCode
English (U.S.)

FileFlagsMask
0x0017

CharacterSet
Unicode

LinkerVersion
7.1

FileTypeExtension
exe

MIMEType
application/octet-stream

FileVersion
1, 0, 48, 05

TimeStamp
2009:09:25 19:57:32+01:00

FileType
Win32 EXE

PEType
PE32

ProductVersion
1, 0, 48, 05

SubsystemVersion
4.0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CodeSize
200704

FileSubtype
0

ProductVersionNumber
1.0.48.5

EntryPoint
0x73010

ObjectFileType
Executable application

Execution parents
Compressed bundles
File identification
MD5 8b1acb587eb190e2c101998a3dc69116
SHA1 0d920d55ec22f42464879e8142c4d60b86b72e26
SHA256 f0ebbb985ebea1d3ad18619001978cbe3c717a7e4d582fded5231ec88658d365
ssdeep
6144:CZC4d3lbxc6wU/UP+XhdMRFD3LAwektooSyeNPL:b4dMRU/UP4heFjLDFtooSpL

authentihash dc9c731ff30ae7ed950a5ba16adce66303cbf0498d54c53f99af1e2766ecdf95
imphash db81c626dd6a61c645d4eb4f28fb7c5e
File size 212.2 KB ( 217332 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID UPX compressed Win32 Executable (38.2%)
Win32 EXE Yoda's Crypter (37.5%)
Win32 Dynamic Link Library (generic) (9.2%)
Win32 Executable (generic) (6.3%)
OS/2 Executable (generic) (2.8%)
Tags
peexe upx overlay

VirusTotal metadata
First submission 2010-07-07 13:02:48 UTC ( 8 anos, 9 meses atrás )
Last submission 2018-07-14 17:34:26 UTC ( 9 meses, 2 semanas atrás )
Nomes do arquivo 53B04F61F4440412505B03ECE60B63007B30108D.exe
Wall Jump(Türkçe Lisans).exe
smona131629201466161305009
smona132286377628049945485
Forumexeliler Jump Hacker.exe
smona132579359989802862541
smona132237922071771815319
Wall Jump.exe
HACK DDTANK.exe
smona132267733143645359195
smona130633699074909251926
smona131555838317565049445
smona130921421683735738452
smona132536638563261968288
TheMikoo Wall Jump.exe
smona131217252101606165159
smona132124282571718093406
smona132294209787431386545
Wall+Jump.exe
file-3076601_exe
8b1acb587eb190e2c101998a3dc69116
smona132053672795206707974
smona132020687654672204657
smona132509210519837716772
WallJump.exe
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

Symantec reputation Suspicious.Insight
Sem comentários. Ainda nenhum membro da Comunidade VirusTotal comentou este item, seja o primeiro!

Deixe o seu comentário...

?
Postar comentário

Você ainda não entrou. Apenas usuários registrados podem comentar, entre e expresse-se!

Sem votos. Ainda nenhum usuário votou neste item, seja o primeiro!