× Cookies er deaktiveret! Denne side kræver cookies for at fungere korrekt
SHA256: 37e5e5ac096dbf3718bee344de6741a96b0534e2c656f2474f8181256446bc09
Filnavn: EklemaxPro.exe
Opdagelses forhold: 0 / 62
Undersøgelses dato: 2017-05-28 15:55:15 UTC ( 4 måneder, 3 ugeriden )
Antivirus Resultat Opdatere
Ad-Aware 20170528
AegisLab 20170528
AhnLab-V3 20170528
Alibaba 20170527
ALYac 20170528
Antiy-AVL 20170528
Arcabit 20170528
Avast 20170528
AVG 20170528
Avira (no cloud) 20170528
AVware 20170528
Baidu 20170527
BitDefender 20170528
Bkav 20170526
CAT-QuickHeal 20170527
ClamAV 20170528
CMC 20170527
Comodo 20170528
CrowdStrike Falcon (ML) 20170420
Cyren 20170528
DrWeb 20170528
Emsisoft 20170528
Endgame 20170515
ESET-NOD32 20170528
F-Prot 20170528
F-Secure 20170528
Fortinet 20170528
GData 20170528
Ikarus 20170528
Sophos ML 20170519
Jiangmin 20170528
K7AntiVirus 20170528
K7GW 20170528
Kaspersky 20170528
Kingsoft 20170528
Malwarebytes 20170528
McAfee 20170528
McAfee-GW-Edition 20170528
Microsoft 20170528
eScan 20170528
NANO-Antivirus 20170528
nProtect 20170528
Palo Alto Networks (Known Signatures) 20170528
Panda 20170528
Qihoo-360 20170528
Rising 20170528
SentinelOne (Static ML) 20170516
Sophos AV 20170528
SUPERAntiSpyware 20170528
Symantec 20170527
Symantec Mobile Insight 20170526
Tencent 20170528
TheHacker 20170528
TotalDefense 20170528
TrendMicro 20170528
TrendMicro-HouseCall 20170525
Trustlook 20170528
VBA32 20170526
VIPRE 20170528
ViRobot 20170528
Webroot 20170528
WhiteArmor 20170524
Yandex 20170526
Zillya 20170527
ZoneAlarm by Check Point 20170528
Zoner 20170528
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2017

Product Eklemax
Original name Eklemax.exe
Internal name Eklemax.exe
File version 1.0.0.0
Description Eklemax
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2017-05-28 15:09:36
Entry Point 0x0021DE8E
Number of sections 3
.NET details
Module Version ID bffc087c-8112-49b6-9517-10d0fcbc08fa
TypeLib ID ff933f54-5ad3-47b4-ad37-82d72861aba2
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_ICON 1
RT_GROUP_ICON 1
RT_VERSION 1
RT_MANIFEST 1
Number of PE resources by language
NEUTRAL 4
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
4.0

InitializedDataSize
18944

ImageVersion
0.0

ProductName
Eklemax

FileVersionNumber
1.0.0.0

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

LinkerVersion
11.0

FileTypeExtension
exe

OriginalFileName
Eklemax.exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
1.0.0.0

TimeStamp
2017:05:28 15:09:36+00:00

FileType
Win32 EXE

PEType
PE32

InternalName
Eklemax.exe

ProductVersion
1.0.0.0

FileDescription
Eklemax

OSVersion
4.0

FileOS
Win32

LegalCopyright
Copyright 2017

MachineType
Intel 386 or later, and compatibles

CodeSize
2211840

FileSubtype
0

ProductVersionNumber
1.0.0.0

EntryPoint
0x21de8e

ObjectFileType
Executable application

AssemblyVersion
1.0.0.0

File identification
MD5 7d44a3baf65ea60d92463c3dc981c712
SHA1 14cc9de23dbc5cc1ddcac945d66f876f6fcdc754
SHA256 37e5e5ac096dbf3718bee344de6741a96b0534e2c656f2474f8181256446bc09
ssdeep
49152:eVt1CZSLSFDhU7Qzrv+GCMJCdWnC/XIdGCh:utb2z88rtCYqvI1

authentihash 53e6b5bc0b4ff96329a5fffeaabd2813c56dc61847d02258882943fb3880fc1b
imphash f34d5f2d4577ed6d9ceec516c1f5a744
File size 2.1 MB ( 2231296 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic CIL Executable (.NET, Mono, etc.) (63.1%)
Win64 Executable (generic) (23.8%)
Win32 Dynamic Link Library (generic) (5.6%)
Win32 Executable (generic) (3.8%)
Generic Win/DOS Executable (1.7%)
Tags
peexe assembly

VirusTotal metadata
First submission 2017-05-28 15:55:15 UTC ( 4 måneder, 3 ugeriden )
Last submission 2017-05-28 15:55:15 UTC ( 4 måneder, 3 ugeriden )
Filnavne Eklemax.exe
EklemaxPro.exe
Ingen kommentarer. Ingen af VirusTotal's medlemmer har kommenteret denne enhed, bliv den første til at gøre dette.

Efterlad din kommentar...

?
Send kommentar

Du er ikke logget ind. Kun registrerede brugere kan skrive kommentarer, log ind!

Ingen stemmer. Ingen har bedømt denne enhed endnu, bliv den første der gør det!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
DNS requests
UDP communications