w3l.exe

Scan w3l.exe - Powered by Reason Core Security
MD5:
36e2e599886479e76e9ee220bab4c05e

SHA-1:
20cdf440c3a20820f8490c4e7e5245387508df0a

SHA-256:
de4864d85db6996814cdaef1732c2cb186b6afc8236b81df3b7765b3e5ce1bd5

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
12/11/2016 12:55:41 PM UTC  (today)

Scan engine
Detection
Engine version

McAfee Web Gateway
Win32.Malware.gen!84 (suspicious)
7.7104

Quick Heal
(Suspicious) - DNAScan
6.14.10.00

File size:
8 KB (8,192 bytes)

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
3/3/2005 4:46:43 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

CTPH (ssdeep):
192:C31iy/68uaCyv5MFQndV4q/yBCNquIbo9:CQQ68uauKndy9BQqL

Entry address:
0x1086

Entry point:
68, 98, 20, 40, 00, FF, 15, 94, 40, 40, 00, FF, 15, 9C, 40, 40, 00, 68, 98, 20, 40, 00, 68, 98, 20, 40, 00, 31, D2, 52, 52, 6A, 04, 52, 52, 52, 50, 68, 78, 20, 40, 00, FF, 15, 98, 40, 40, 00, 85, C0, 75, 1C, 6A, 00, 68, 00, 20, 40, 00, 68, 35, 20, 40, 00, 6A, 00, FF, 15, B8, 40, 40, 00, 6A, 02, FF, 15, 90, 40, 40, 00, 8B, 1D, 98, 20, 40, 00, 68, 90, 20, 40, 00, 6A, 04, 68, 94, 20, 40, 00, 68, D0, 34, 45, 00, 53, FF, 15, 84, 40, 40, 00, 85, C0, 0F, 84, 04, FF, FF, FF, A1, 94, 20, 40, 00, 3B, 05, 08, 20, 40...
 
[+]

Entropy:
4.3403

Code size:
512 Bytes (512 bytes)

Scan w3l.exe - Powered by Reason Core Security