× Cookies被禁用! 本网站需要启用Cookie才能正常工作
SHA256: 949fa29216ff6def7ce55964314e327db90e17ef81310068e67c1441cc5652a5
文件名: GGbdIwIyp.exe
检出率: 34 / 69
分析日期: 2019-01-16 16:23:29 UTC ( 3 月, 1 周 前 )
反病毒软件 结果 病毒库日期
Acronis suspicious 20190116
Ad-Aware DeepScan:Generic.RozenaA.17608254 20190116
ALYac DeepScan:Generic.RozenaA.17608254 20190116
Arcabit DeepScan:Generic.RozenaA.D10CAE3E 20190116
Avast Win32:Evo-gen [Susp] 20190115
AVG Win32:Evo-gen [Susp] 20190116
Avira (no cloud) TR/Crypt.XPACK.Gen 20190116
BitDefender DeepScan:Generic.RozenaA.17608254 20190116
CrowdStrike Falcon (ML) malicious_confidence_100% (D) 20181023
Cybereason malicious.e8f7f1 20190109
Cylance Unsafe 20190116
Emsisoft DeepScan:Generic.RozenaA.17608254 (B) 20190116
Endgame malicious (high confidence) 20181108
ESET-NOD32 a variant of Win32/Rozena.ABC 20190116
F-Secure DeepScan:Generic.RozenaA.17608254 20190116
Fortinet W32/Generic.AP.15F0478!tr 20190116
GData DeepScan:Generic.RozenaA.17608254 20190116
Ikarus Trojan.Win32.Rozena 20190116
Sophos ML heuristic 20181128
Kaspersky HEUR:Trojan.Win32.Cometer.gen 20190116
MAX malware (ai score=89) 20190116
McAfee Veil-FQME!32BB1E0E8F7F 20190116
McAfee-GW-Edition BehavesLike.Win32.Downloader.zm 20190116
Microsoft Trojan:Win32/Meterpreter.P 20190116
eScan DeepScan:Generic.RozenaA.17608254 20190116
Qihoo-360 HEUR/QVM20.1.96AC.Malware.Gen 20190116
Rising Trojan.Generic!8.C3/N3#100% (RDM+:cmRtazrge0kcr4UUkR1fQTfQKIiw) 20190116
SentinelOne (Static ML) static engine - malicious 20181223
Sophos AV Mal/BredoPk-B 20190116
Symantec ML.Attribute.HighConfidence 20190116
Trapmine malicious.high.ml.score 20190103
VBA32 BScope.Trojan.Win64.Meterpreter 20190116
Webroot W32.Malware.Gen 20190116
ZoneAlarm by Check Point HEUR:Trojan.Win32.Cometer.gen 20190116
AegisLab 20190116
AhnLab-V3 20190116
Alibaba 20180921
Antiy-AVL 20190116
Avast-Mobile 20190116
Babable 20180918
Baidu 20190116
Bkav 20190116
CAT-QuickHeal 20190116
ClamAV 20190116
CMC 20190116
Comodo 20190116
Cyren 20190116
DrWeb 20190116
eGambit 20190116
F-Prot 20190116
Jiangmin 20190116
K7AntiVirus 20190116
K7GW 20190116
Kingsoft 20190116
Malwarebytes 20190116
NANO-Antivirus 20190116
Palo Alto Networks (Known Signatures) 20190116
Panda 20190116
SUPERAntiSpyware 20190109
TACHYON 20190116
Tencent 20190116
TheHacker 20190115
TrendMicro 20190116
TrendMicro-HouseCall 20190116
Trustlook 20190116
ViRobot 20190115
Yandex 20190116
Zillya 20190115
Zoner 20190116
The file being studied is a Portable Executable file! More specifically, it is a DOS EXE file.
FileVersionInfo properties
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2019-01-16 16:17:04
Entry Point 0x00001397
Number of sections 3
PE sections
PE imports
VirtualAlloc
OutputDebugStringA
GetTickCount
OpenProcess
malloc
memset
strlen
File identification
MD5 32bb1e0e8f7f11a6612c5cb9e28c2be3
SHA1 e98fc7888a960462f9b53eac0a59dba64e286fd8
SHA256 949fa29216ff6def7ce55964314e327db90e17ef81310068e67c1441cc5652a5
ssdeep
48:18gkZr+53EIDkYHQi4Z5T2Y744daZmhJH7pYMwHeARKmKDDMGwnEBgAm:18g0MUZ5aY7SmhN7iFFEj

authentihash 57c1003b8669019cadba8b8d46a5975f36f73b479df5370c96cd9bee354cb868
imphash cb1199d5cde7615eb3f5fe57adfcc439
File size 3.5 KB ( 3584 bytes )
File type DOS EXE
Magic literal
MS-DOS executable, MZ for MS-DOS

TrID Win32 Executable (generic) (52.9%)
Generic Win/DOS Executable (23.5%)
DOS Executable Generic (23.5%)
Tags
mz

VirusTotal metadata
First submission 2019-01-16 16:23:29 UTC ( 3 月, 1 周 前 )
Last submission 2019-01-16 16:23:29 UTC ( 3 月, 1 周 前 )
文件名 GGbdIwIyp.exe
没有评论. 没有VirusTotal社区成员评论该项目,抢沙发!

发表评论

?
发表评论

您没有登录。只有注册用户可以发表评论,请登录后发表评论!

没有投票. 目前没有用户投票。