× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 5f109386a9225375ec74b5f6ade422f640cb99e721e88897ca0b5a76fed109e9
File name: Launch.exe
Detection ratio: 2 / 54
Analysis date: 2014-10-27 11:32:27 UTC ( 4 år, 4 månader ago ) View latest
Antivirus Result Update
McAfee-GW-Edition BehavesLike.Win32.Backdoor.cm 20141027
Symantec WS.Reputation.1 20141027
Ad-Aware 20141027
AegisLab 20141027
Yandex 20141027
AhnLab-V3 20141027
Antiy-AVL 20141027
Avast 20141027
AVG 20141027
Avira (no cloud) 20141027
AVware 20141027
Baidu-International 20141027
BitDefender 20141027
Bkav 20141027
ByteHero 20141027
CAT-QuickHeal 20141027
ClamAV 20141027
CMC 20141027
Comodo 20141027
Cyren 20141027
DrWeb 20141027
Emsisoft 20141027
ESET-NOD32 20141027
F-Prot 20141027
F-Secure 20141027
Fortinet 20141027
GData 20141027
Ikarus 20141027
Jiangmin 20141026
K7AntiVirus 20141025
K7GW 20141025
Kaspersky 20141027
Kingsoft 20141027
Malwarebytes 20141027
McAfee 20141027
Microsoft 20141027
eScan 20141025
NANO-Antivirus 20141027
Norman 20141027
nProtect 20141027
Qihoo-360 20141027
Rising 20141026
Sophos AV 20141027
SUPERAntiSpyware 20141025
Tencent 20141027
TheHacker 20141022
TotalDefense 20141027
TrendMicro 20141027
TrendMicro-HouseCall 20141027
VBA32 20141027
VIPRE 20141027
ViRobot 20141027
Zillya 20141027
Zoner 20141024
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2014

Product BlueJelly
Original name Launch.exe
Internal name Launch.exe
File version 1.0.0.0
Description BlueJelly
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2014-10-19 22:06:21
Entry Point 0x00025F6E
Number of sections 4
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_ICON 7
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 10
PE resources
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
11.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.0.0.0

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
13824

FileOS
Win32

MIMEType
application/octet-stream

LegalCopyright
Copyright 2014

FileVersion
1.0.0.0

TimeStamp
2014:10:19 23:06:21+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
Launch.exe

FileAccessDate
2014:11:25 03:35:59+01:00

ProductVersion
1.0.0.0

FileDescription
BlueJelly

OSVersion
4.0

FileCreateDate
2014:11:25 03:35:59+01:00

OriginalFilename
Launch.exe

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CodeSize
147456

ProductName
BlueJelly

ProductVersionNumber
1.0.0.0

EntryPoint
0x25f6e

ObjectFileType
Executable application

AssemblyVersion
1.0.0.0

File identification
MD5 1a561e78fd6325b2644721b7e4185eb3
SHA1 fb9ff285fa44e37ba553103ccdbbc03528c00a1b
SHA256 5f109386a9225375ec74b5f6ade422f640cb99e721e88897ca0b5a76fed109e9
ssdeep
3072:TGvJc/FDUA3TsXZ5aSVNAwxbY1+ceVqiAI:TsA4TaANJx6+Mp

authentihash e7912794f6b76fb43616a7765e24e6a07a6b6e2ade07b1e393749a3f4153eff4
imphash f34d5f2d4577ed6d9ceec516c1f5a744
File size 158.5 kB ( 162304 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic CIL Executable (.NET, Mono, etc.) (55.8%)
Win64 Executable (generic) (21.0%)
Windows Screen Saver (9.9%)
Win32 Dynamic Link Library (generic) (5.0%)
Win32 Executable (generic) (3.4%)
Tags
peexe assembly

VirusTotal metadata
First submission 2014-10-27 11:32:27 UTC ( 4 år, 4 månader ago )
Last submission 2014-10-27 11:32:27 UTC ( 4 år, 4 månader ago )
File names Launch.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!