Analyzing...
|
File Name:   Setup_Maker_Kur.exe
SHA1:   0d172b14f4be8bd7fdc80cf01e8ae6d9fd8e28c5
MD5:   7974a6e722414670fb9b2a94ff85c75b
First Seen Date:  2016-01-30 18:59:51.325911 ( )
Number of Clients Seen:   11
Last Analysis Date:  2016-04-09 02:55:33.541097 ( )
Human Expert Analysis Date:  2016-02-12 08:34:48.042809 ( )Human Expert Analysis Result:   Clean
Analysis Summary
Analysis Type | Date | Verdict | |
---|---|---|---|
Signature Based Detection | 2016-04-09 02:55:33.541097 | Clean | |
Static Analysis Overall Verdict | 2016-04-09 02:55:33.541097 | Highly Suspicious | |
Human Expert Analysis Overall Verdict | 2016-02-12 08:34:48.042809 | Clean |
Static Analysis
Static Analysis Overall Verdict | Result |
---|---|
Highly Suspicious |
Detector | Result | |
---|---|---|
Optional Header LoaderFlags field is valued illegal | Clean | |
Non-ascii or empty section names detected | Clean | |
Illegal size of optional Header | Clean | |
Optional Header NumberOfRvaAndSizes field is valued illegal | Suspicious | |
Based on the sections entropy check! file is possibly packed | Suspicious | |
Timestamp value suspicious | Clean | |
Header Checksum is zero! | Suspicious | |
Enrty point is outside the 1st(.code) section! Binary is possibly packed | Clean | |
Packer detection on signature database | Unknown | help |
Anti-vm present | Clean | |
The Size Of Raw data is valued illegal! Binary might crash your disassembler/debugger | Clean | |
TLS callback functions array detected | Clean |
Packer detection on signature database
Microsoft Visual C# / Basic .NET
.NET executable
Dynamic Analysis
No Dynamic Analysis Result Received
Behavioral Information is not Available
Precise Detectors Analysis Results
No Detector Result Received
Advance Heuristics
No Advanced Heuristic Analysis Result Received
Human Expert Analysis Results
Analysis Start Date:   2016-02-01 18:33:20.979178 ( )
Analysis End Date:  2016-02-12 08:34:48.042809 ( )
File Upload Date:  2016-02-01 18:18:18.282168 ( )
Update Date:  2016-02-12 08:34:48.042814 ( )
Human Expert Analyst Feedback:   Software tool. Setup maker.
Verdict:   Clean
Malware Family:   Safe
Additional File Information
Property | Value |
---|
Name | Virtual Address | Virtual Size | Raw Size | Entropy | MD5 |
---|