keywriter.exe

Scan keywriter.exe - Powered by Reason Core Security
Version:
2.1.4.1

MD5:
c73d51fb18752395ec24c1f68c50d2c2

SHA-1:
b145186472f47aa2764576daed323ace3d1bf2c6

SHA-256:
88dc1ec368dba4a7e82bf22f50cfb63b6b10309c1021624b99ecb6c88b88722c

Scanner detections:
4 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
12/11/2016 7:17:10 AM UTC  (today)

Scan engine
Detection
Engine version

ByteHero BDV
Trojan.Win32.Heur.Gen
6.10.2014.10

Clam AntiVirus
PUA.Packed.ASPack
0.98/18011

McAfee Web Gateway
Heuristic.LooksLike.Win32.Suspicious.C
7.7104

Quick Heal
(Suspicious) - DNAScan
6.14.11.00

File size:
261.5 KB (267,776 bytes)

Product version:
2.1.4.1

File type:
Executable application (Win32 EXE)

Language:
German (Germany)

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
6144:LhOxrYPm7rDysnigOZhZl8qta0QQdUwvP6bQ7yMP+DE82726UiD:AX7NGj2qtr9l6b7MP+Dd2TUe

Entry address:
0x1000

Entry point:
68, 01, C0, 45, 00, E8, 01, 00, 00, 00, C3, C3, 2D, 61, 97, 89, 8B, 34, 3F, 8D, 32, D0, F6, 50, 97, 4A, 5E, 1A, E8, 0A, 7D, B3, EC, 11, E6, E4, 9D, C3, BB, C4, 11, 3D, E0, E7, 02, B6, 3B, 9E, E2, 22, 67, 54, 16, 6C, F9, 68, 34, 1D, 7C, F6, 8C, 34, C5, 4B, 62, 39, 3A, 42, 5F, C9, 1E, F6, 8B, 37, 7F, 4B, E4, 45, F1, 14, 01, 1A, FB, 66, 9B, 40, 30, AE, 9B, 1D, 5B, 65, 6D, AF, DE, 59, 01, 78, A3, AF, A8, 76, CD, D7, 97, 33, 3B, 5D, B6, 07, E7, A1, 1C, 6D, A9, 70, DE, E2, 08, 8D, F6, D6, D2, 3D, A0, 61, D1, 74...
 
[+]

Packer / compiler:
ASProtect v1.2x (New Strain)

Code size:
287 KB (293,888 bytes)

Scan keywriter.exe - Powered by Reason Core Security