× В вашем браузере отключены куки (cookie). Для полноценной работы сайта необходимо включить сохранение файлов cookie.
SHA256: 855bf7e17b5fada09b0b9ea510359de1bdf389382f6a3d26992a68e9b1af1baa
Имя файла: nero.bin
Показатель выявления: 34 / 69
Дата анализа: 2018-11-26 19:30:57 UTC (5 месяцев, 4 недель назад) Показать последний анализ
Антивирус Результат Дата обновления
Ad-Aware Trojan.GenericKD.31358848 20181126
AegisLab Trojan.Win32.Generic.4!c 20181126
ALYac Trojan.GenericKD.31358848 20181126
Antiy-AVL Trojan/Win32.Msht 20181126
Arcabit Trojan.Generic.D1DE7F80 20181126
Avast Win32:Malware-gen 20181126
AVG Win32:Malware-gen 20181126
BitDefender Trojan.GenericKD.31358848 20181126
CrowdStrike Falcon (ML) malicious_confidence_100% (W) 20181022
Cybereason malicious.473ec2 20180225
Emsisoft Trojan.GenericKD.31358848 (B) 20181126
Endgame malicious (high confidence) 20181108
ESET-NOD32 a variant of Win32/Kryptik.GMXI 20181126
F-Secure Trojan.GenericKD.31358848 20181126
Fortinet W32/GenKryptik.CQSJ!tr 20181126
GData Trojan.GenericKD.31358848 20181126
Ikarus Trojan.Win32.Krypt 20181126
Sophos ML heuristic 20181108
Kaspersky Trojan.Win32.Msht.xn 20181126
MAX malware (ai score=86) 20181126
McAfee RDN/Ransom 20181126
McAfee-GW-Edition BehavesLike.Win32.Expiro.hc 20181126
Microsoft Ransom:Win32/Pulobe.A 20181126
eScan Trojan.GenericKD.31358848 20181126
NANO-Antivirus Trojan.Win32.Msht.fklmku 20181126
Palo Alto Networks (Known Signatures) generic.ml 20181126
Panda Trj/CI.A 20181126
Sophos AV Mal/Generic-S 20181126
Symantec Trojan.Gen.2 20181126
Tencent Win32.Trojan.Msht.Sueh 20181126
Trapmine malicious.moderate.ml.score 20181126
TrendMicro Ransom_Pulobe.R011C0DKK18 20181126
TrendMicro-HouseCall Ransom_Pulobe.R011C0DKK18 20181126
ZoneAlarm by Check Point Trojan.Win32.Msht.xn 20181126
AhnLab-V3 20181126
Alibaba 20180921
Avast-Mobile 20181126
Avira (no cloud) 20181126
Babable 20180918
Baidu 20181126
Bkav 20181126
CAT-QuickHeal 20181126
ClamAV 20181126
CMC 20181126
Comodo 20181126
Cylance 20181126
Cyren 20181126
DrWeb 20181126
eGambit 20181126
F-Prot 20181126
Jiangmin 20181126
K7AntiVirus 20181126
K7GW 20181126
Kingsoft 20181126
Malwarebytes 20181126
Qihoo-360 20181126
Rising 20181126
SentinelOne (Static ML) 20181011
SUPERAntiSpyware 20181121
Symantec Mobile Insight 20181121
TACHYON 20181126
TheHacker 20181126
TotalDefense 20181126
Trustlook 20181126
VBA32 20181126
ViRobot 20181126
Webroot 20181126
Yandex 20181123
Zillya 20181126
Zoner 20181126
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
©Xeric Design, Ltd.. All rights reserved.

Product Racks
Original name Racks
Internal name Racks
File version 5.2.5.4
Description Landmark Mp3 Gettickcount Hearing Rock
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2018-11-10 21:39:47
Entry Point 0x00015555
Number of sections 4
PE sections
PE imports
RegDeleteKeyA
RegCloseKey
RegSetValueExA
RegDeleteValueA
RegCreateKeyExA
LookupAccountNameW
RegOpenKeyExA
RegEnumKeyExA
RegQueryInfoKeyA
AVIMakeCompressedStream
CreateToolbarEx
InitCommonControlsEx
GetObjectA
CreateMetaFileA
SelectObject
BitBlt
CreatePalette
SetViewportOrgEx
CreateFontIndirectA
CreateSolidBrush
SetBkMode
SelectClipRgn
DeleteObject
CreateFontW
GetStdHandle
GetConsoleOutputCP
GetOverlappedResult
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetConsoleMode
GetLocaleInfoA
FreeEnvironmentStringsW
GetLocaleInfoW
SetStdHandle
GetCPInfo
GetStringTypeA
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
GetOEMCP
LocalFree
InitializeCriticalSection
LoadResource
TlsGetValue
FormatMessageA
SetLastError
GetModuleFileNameW
IsDebuggerPresent
ExitProcess
GetModuleFileNameA
SetConsoleScreenBufferSize
EnumSystemLocalesA
LoadLibraryExA
UnhandledExceptionFilter
InterlockedDecrement
MultiByteToWideChar
FlushInstructionCache
GetModuleHandleA
CreateThread
SetUnhandledExceptionFilter
Module32NextW
IsProcessorFeaturePresent
TerminateProcess
WriteConsoleA
VirtualQuery
SetEndOfFile
GetCurrentThreadId
InterlockedIncrement
WriteConsoleW
CreateToolhelp32Snapshot
InitializeCriticalSectionAndSpinCount
HeapFree
EnterCriticalSection
SetHandleCount
lstrcmpiA
FreeLibrary
QueryPerformanceCounter
GetTickCount
TlsAlloc
VirtualProtect
FlushFileBuffers
LoadLibraryA
RtlUnwind
GetStartupInfoA
GetFileSize
OpenProcess
GetProcAddress
SetFileInformationByHandle
GetProcessHeap
IsValidLocale
GetUserDefaultLCID
CreateEventW
CreateFileW
GetFileType
TlsSetValue
CreateFileA
HeapAlloc
LeaveCriticalSection
GetLastError
LCMapStringW
GetSystemInfo
lstrlenA
GetConsoleCP
LCMapStringA
GetEnvironmentStringsW
IsDBCSLeadByte
lstrlenW
CreateProcessW
Module32FirstW
SizeofResource
GetCurrentProcessId
LockResource
GetCommandLineW
WideCharToMultiByte
HeapSize
GetCommandLineA
InterlockedCompareExchange
RaiseException
TlsFree
SetFilePointer
ReadFile
CloseHandle
GetACP
GetModuleHandleW
GetEnvironmentStrings
IsValidCodePage
HeapCreate
VirtualFree
Sleep
FindResourceA
VirtualAlloc
NetMessageNameAdd
NetMessageBufferSend
NetMessageNameDel
NetShareGetInfo
VarUI4FromStr
GetModuleFileNameExA
GetModuleInformation
EnumProcesses
GetModuleFileNameExW
SHBrowseForFolderA
CommandLineToArgvW
PathIsFileSpecW
PathIsLFNFileSpecW
PathFileExistsW
StrCSpnA
ChrCmpIA
PathFindFileNameA
StrToIntExA
StrChrA
StrCmpNIA
PathIsDirectoryW
StrTrimA
MapWindowPoints
SetFocus
GetParent
UpdateWindow
EndDialog
BeginPaint
DefMDIChildProcA
GetUserObjectInformationA
GetMonitorInfoA
DefWindowProcA
SetWindowPos
SendDlgItemMessageA
GetSystemMetrics
SetScrollPos
MessageBoxW
GetWindowRect
CreateDesktopA
SetRectEmpty
MessageBoxA
AppendMenuW
SetWindowLongA
SetProcessWindowStation
DialogBoxParamA
GetWindow
GetProcessWindowStation
GetDC
GetKeyState
UnregisterClassA
CharLowerA
SendMessageA
SetThreadDesktop
GetClientRect
GetDlgItem
DrawMenuBar
MonitorFromWindow
GetThreadDesktop
SetRect
CloseWindowStation
InvalidateRect
GetWindowLongA
GetWindowTextLengthA
GetActiveWindow
CharNextA
CloseDesktop
LoadImageA
FillRect
GetWindowTextA
CopyImage
DestroyWindow
GetFileVersionInfoW
InternetConfirmZoneCrossingA
waveOutGetPosition
waveOutGetPlaybackRate
WTSEnumerateProcessesA
WTSFreeMemory
CoUninitialize
CoInitialize
CoTaskMemAlloc
CoTaskMemRealloc
CoCreateInstance
CoTaskMemFree
CreateItemMoniker
PdhGetFormattedCounterValue
Number of PE resources by type
RT_GROUP_CURSOR 8
RT_MENU 7
RT_BITMAP 7
RT_ICON 6
RT_CURSOR 6
RCDATA 5
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 42
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
5.0

Languages
English

LinkerVersion
9.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
5.2.5.4

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

FileDescription
Landmark Mp3 Gettickcount Hearing Rock

ImageFileCharacteristics
No relocs, Executable, 32-bit

CharacterSet
Unicode

InitializedDataSize
354304

PrivateBuild
5.2.5.4

EntryPoint
0x15555

OriginalFileName
Racks

MIMEType
application/octet-stream

LegalCopyright
Xeric Design, Ltd.. All rights reserved.

FileVersion
5.2.5.4

TimeStamp
2018:11:10 22:39:47+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
Racks

ProductVersion
5.2.5.4

UninitializedDataSize
0

OSVersion
5.0

FileOS
Windows NT 32-bit

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Xeric Design, Ltd.

CodeSize
181760

ProductName
Racks

ProductVersionNumber
5.2.5.4

FileTypeExtension
exe

ObjectFileType
Executable application

Execution parents
Compressed bundles
File identification
MD5 563f66fe907979940b1bec33359f1ab5
SHA1 8d032cb473ec29c58888bdd978820a03c3a626b4
SHA256 855bf7e17b5fada09b0b9ea510359de1bdf389382f6a3d26992a68e9b1af1baa
ssdeep
6144:jcg+Fw5rrWyIRLSIWpGXwWZVpaIDoFg1oOn2MnzKJst5G4Ph4Ky70qcu:jBrWPRLSIWpGXwWZjDEQDjKJ0G4Ph4Su

authentihash 31598242a21d1aa8c40e034f94b33a704016e43e430077321d761cfa91e369af
imphash 2a7252ddfc67c977ce41b0dc74c5d151
Размер файла 524.5 KБ ( 537088 bytes )
Тип файла Win32 EXE
Описание
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (41.0%)
Win64 Executable (generic) (36.3%)
Win32 Dynamic Link Library (generic) (8.6%)
Win32 Executable (generic) (5.9%)
OS/2 Executable (generic) (2.6%)
Tags
peexe

VirusTotal metadata
First submission 2018-11-17 11:54:19 UTC (6 месяцев, 1 неделя назад)
Last submission 2018-11-26 23:48:13 UTC (5 месяцев, 4 недель назад)
Имена файлов nero.bin
nero.exe
nero.exe
nero.exe
nero.exe
seek1011_output_8cr64.exe
Racks
Нет комментариев. Из участников сообщества VirusTotal ещё пока никто не оставил комментарий по поводу результатов анализа. Станьте первым!

Оставьте свой комментарий...

?
Отправить

Вы не выполнили вход. Только зарегистрированные пользователи могут оставлять комментарии. Выполните вход и получите право голоса!

Нет голосов. Ещё пока никто не проголосовал за результаты анализа. Станьте первым!