× В вашем браузере отключены куки (cookie). Для полноценной работы сайта необходимо включить сохранение файлов cookie.
SHA256: 66e80764834015fb11fdd532816fb010a50aff2cfc25d702bc83322efd0932ba
Имя файла: Survarium_R.exe
Показатель выявления: 0 / 61
Дата анализа: 2017-04-15 00:27:43 UTC (7 месяцев, 1 неделя назад) Показать последний анализ
Антивирус Результат Дата обновления
Ad-Aware 20170414
AegisLab 20170414
AhnLab-V3 20170414
Alibaba 20170414
ALYac 20170414
Antiy-AVL 20170414
Arcabit 20170414
Avast 20170414
AVG 20170414
Avira (no cloud) 20170414
AVware 20170410
Baidu 20170414
BitDefender 20170414
Bkav 20170414
CAT-QuickHeal 20170414
ClamAV 20170414
CMC 20170414
Comodo 20170415
CrowdStrike Falcon (ML) 20170130
Cyren 20170414
DrWeb 20170415
Emsisoft 20170414
Endgame 20170413
ESET-NOD32 20170415
F-Prot 20170415
F-Secure 20170415
Fortinet 20170414
GData 20170415
Ikarus 20170414
Sophos ML 20170413
Jiangmin 20170414
K7AntiVirus 20170414
K7GW 20170414
Kaspersky 20170415
Kingsoft 20170415
Malwarebytes 20170414
McAfee 20170412
McAfee-GW-Edition 20170414
Microsoft 20170414
eScan 20170414
NANO-Antivirus 20170414
nProtect 20170415
Palo Alto Networks (Known Signatures) 20170415
Panda 20170414
Qihoo-360 20170415
Rising None
SentinelOne (Static ML) 20170330
Sophos AV 20170415
SUPERAntiSpyware 20170415
Symantec 20170414
Symantec Mobile Insight 20170414
Tencent 20170415
TheHacker 20170412
TrendMicro 20170414
TrendMicro-HouseCall 20170415
Trustlook 20170415
VBA32 20170414
VIPRE 20170414
ViRobot 20170414
Webroot 20170415
WhiteArmor 20170409
Yandex 20170414
Zillya 20170414
ZoneAlarm by Check Point 20170415
Zoner 20170415
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2017 Knyazev's Tools

Product Survarium ReplayeR v3.9 [by Knyazev]
Original name Survarium_R.exe
Internal name Survarium_R.exe
File version 3.9.3.2
Description Survarium ReplayeR [by Knyazev]
Comments Survarium ReplayeR v3.9 [by Knyazev]
Signature verification A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.
Signing date 7:33 AM 8/14/2017
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2017-04-15 02:20:36
Entry Point 0x0004FF3B
Number of sections 3
.NET details
Module Version ID f3941f2f-a88c-476e-be04-42b9a712a1ca
TypeLib ID 09b7e9b4-9380-4b87-8485-c1e9298dbaf9
PE sections
Overlays
MD5 de25791f4569f3cd34e14a79d9322860
File type data
Offset 337408
Size 4088
Entropy 7.62
PE imports
_CorExeMain
Number of PE resources by type
RT_ICON 3
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 5
PE resources
ExifTool file metadata
LegalTrademarks
2017 Knyazev's Tools

SubsystemVersion
4.0

Comments
Survarium ReplayeR v3.9 [by Knyazev]

LinkerVersion
8.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
3.9.3.2

LanguageCode
Neutral

FileFlagsMask
0x003f

FileDescription
Survarium ReplayeR [by Knyazev]

CharacterSet
Unicode

InitializedDataSize
17408

EntryPoint
0x4ff3b

OriginalFileName
Survarium_R.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright 2017 Knyazev's Tools

FileVersion
3.9.3.2

TimeStamp
2017:04:15 03:20:36+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
Survarium_R.exe

ProductVersion
3.9.3.2

UninitializedDataSize
0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
2017 Knyazev's Tools

CodeSize
319488

ProductName
Survarium ReplayeR v3.9 [by Knyazev]

ProductVersionNumber
3.9.3.2

FileTypeExtension
exe

ObjectFileType
Executable application

AssemblyVersion
3.9.3.2

Compressed bundles
File identification
MD5 f4e5188aa4b6eefd4b72779ebf0a03fa
SHA1 ff357eee2e88e5f9414e3eebfd83c4fc5710b4d6
SHA256 66e80764834015fb11fdd532816fb010a50aff2cfc25d702bc83322efd0932ba
ssdeep
6144:rH4m7SWh7nmvH4uWe7ABmlAN0QdjoLcQdjFLOByaNF37QWj7Lu7727fBpWGEBlYY:oq+oYY9+mJLgJhqZnFu

authentihash 52b92b32a689c77aaabc4e95c14c27f530dda04e59d5d37ba1d1b06a109c0266
imphash f34d5f2d4577ed6d9ceec516c1f5a744
Размер файла 333.5 KБ ( 341496 bytes )
Тип файла Win32 EXE
Описание
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Win64 Executable (generic) (49.4%)
Windows screen saver (23.4%)
Win32 Dynamic Link Library (generic) (11.7%)
Win32 Executable (generic) (8.0%)
Generic Win/DOS Executable (3.5%)
Tags
peexe assembly overlay

VirusTotal metadata
First submission 2017-04-15 00:27:43 UTC (7 месяцев, 1 неделя назад)
Last submission 2017-08-14 06:33:31 UTC (3 месяцев, 1 неделя назад)
Имена файлов Survarium_R.exe
Нет комментариев. Из участников сообщества VirusTotal ещё пока никто не оставил комментарий по поводу результатов анализа. Станьте первым!

Оставьте свой комментарий...

?
Отправить

Вы не выполнили вход. Только зарегистрированные пользователи могут оставлять комментарии. Выполните вход и получите право голоса!

Нет голосов. Ещё пока никто не проголосовал за результаты анализа. Станьте первым!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
HTTP requests
DNS requests
TCP connections
UDP communications