Virusign
Info

Details for 3889fd044a9cceb024dd0d9fb4c144c7cb7d985e06145ea21bb8afba9f2aace3

Nameduke.exe
Date (Y-m-d)2017-10-29
Size (Bytes)143360 (140KB)
FilePE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
TrID81.0% (.EXE) Generic CIL Executable (.NET, Mono, etc.) (73294/58/13)
7.2% (.DLL) Win32 Dynamic Link Library (generic) (6578/25/2)
4.9% (.EXE) Win32 Executable (generic) (4508/7/1)
2.2% (.EXE) Win16/32 Executable Delphi generic (2072/23)
2.2% (.EXE) Generic Win/DOS Executable (2002/3)
CRC32bcbe735a
MD5464cdcf5bf7de5ffb5407b6fefee2ffa
SHA1f13b617cce1b6a043c4b0590f31c917cd5f91dc5
SHA2563889fd044a9cceb024dd0d9fb4c144c7cb7d985e06145ea21bb8afba9f2aace3
ImpHashf34d5f2d4577ed6d9ceec516c1f5a744
ImpFuzzy3:rGsLdAIEK:tf
SSDeep3072:hATkWDYZ4Um0o7TmxRmmKGChqisA1hOojzqDVNc9:GTFDU1QTmx1pgqid1C
Online Analysis 1x
Online Analysis 2x
Online Analysis 3http://sarvam.ece.ucsb.edu/analysis/464cdcf5bf7de5ffb5407b6fefee2ffa
AV1 (ClamAV) StatusNo detection
AV2 AV3 AV4 AV5 AV6 AV7 StatusDetected on 2017-10-29
AV1 DetectionOK
AV1 Virus Signatures VersionClamAV 0.99.2/24048/Fri Nov 17 04:21:38 2017 (2017-11-17)
AV2 DetectionTrojan.MSIL.Crypt
AV2 Virus Signatures VersionVDB: 31.10.2017 08:41:14 (Build: 99867) (2017-10-31)
AV3 DetectionWin32:Malware-gen
AV3 Virus Signatures Version17102900 (2017-10-29)
AV4 DetectionTrojan horse Atros6.GEC
AV4 Virus Signatures Version4767/15080 Sun, 29 Oct 2017 08:18:00 +0000 (2017-10-29)
AV5 DetectionW32/Barys.AY
AV5 Virus Signatures Version201710291052 (2017-10-29)
AV6 DetectionMal/Generic-S
AV6 Virus Signatures Version5.44 19 September 2017 (2017-10-29)
AV7 DetectionGen:Variant.Barys.55497(DB)
AV7 Virus Signatures Version7.73621 (2017-10-29)