Copy URL toClipboard
Export Results To PDF
View Virus Total Result
Kill Chain Report
Send To Human Expert
Analyst
Object to Human Expert
Analysis Verdict
 |
| Clean |
Valkyrie Final Verdict |
File Name: AndroidConstants.exe
File Type: PE32+ executable (GUI) x86-64, for MS Windows
SHA1: 2a4a5f134bc31862fa5093c0c157538bd8f25c4b
MD5: 4aa7db1d02bc1ddb040fc352211a5bf1
First Seen Date: 2016-09-25 19:12:41 ( )
Number of Clients Seen: 3
Last Analysis Date: 2016-09-25 19:12:41 ( )
Human Expert Analysis Date: 2016-12-14 17:03:22 ( )Human Expert Analysis Result: Clean
Verdict Source: Valkyrie Human Expert Analysis Overall Verdict
Analysis Summary
| Analysis Type | Date | Verdict | |
|---|---|---|---|
| Signature Based Detection | 2016-09-25 19:12:41 | Clean | |
| Static Analysis Overall Verdict | 2016-09-25 19:12:41 | No Threat Found | help |
| Human Expert Analysis Overall Verdict | 2016-12-14 17:03:22 | Clean | |
| File Certificate Validation | 2016-09-25 19:12:41 | Not Applicable | help |
Static Analysis
| Static Analysis Overall Verdict | Result |
|---|---|
| No Threat Found | help |
| Detector | Result | |
|---|---|---|
| Optional Header LoaderFlags field is valued illegal | Clean | |
| Non-ascii or empty section names detected | Clean | |
| Illegal size of optional Header | Suspicious | |
| Packer detection on signature database | Unknown | help |
| Based on the sections entropy check! file is possibly packed | Clean | |
| Timestamp value suspicious | Clean | |
| Header Checksum is zero! | Clean | |
| Enrty point is outside the 1st(.code) section! Binary is possibly packed | Clean | |
| Optional Header NumberOfRvaAndSizes field is valued illegal | Clean | |
| Anti-vm present | Suspicious | |
| The Size Of Raw data is valued illegal! Binary might crash your disassembler/debugger | Clean | |
| TLS callback functions array detected | Clean | |
Dynamic Analysis
No Dynamic Analysis Result Received
Behavioral Information is not Available
Precise Detectors Analysis Results
No Detector Result Received
Advance Heuristics
No Advanced Heuristic Analysis Result Received
Human Expert Analysis Results
Analysis Start Date: 2016-09-25 22:27:43 ( )
Analysis End Date: 2016-12-14 17:03:22 ( )
File Upload Date: 2016-09-25 19:12:41 ( )
Update Date: 2016-10-01 10:48:54 ( )
Human Expert Analyst Feedback: Riskware
Verdict: Clean
Additional File Information
| Property | Value |
|---|---|
| compilation time stamp | 0x57E82186 [Sun Sep 25 19:12:06 2016 UTC] |
| entry point | 0x14002fa1c (.text) |
| file size | 982528 |
| machine type | AMD64 only, not Itaniums, with 0200 - 64 bit |
| Translation | 0x0809 0x04b0 |
| mime type | application/x-dosexec |
| number of sections | 6 |
| sha256 | cc78b2c06210dd1f1a8753dbecfde21351702dbf8aa1c822a8802e495073bea6 |
| Name | Virtual Address | Virtual Size | Raw Size | Entropy | MD5 |
|---|---|---|---|---|---|
| .text | 0x1000 | 0xa8011 | 0xa8200 | 6.508037 | - |
| .rdata | 0xaa000 | 0x2fb90 | 0x2fc00 | 5.270924 | - |
| .data | 0xda000 | 0xb230 | 0x5e00 | 1.157537 | - |
| .pdata | 0xe6000 | 0x699c | 0x6a00 | 5.813306 | - |
| .rsrc | 0xed000 | 0xa630 | 0xa800 | 5.608873 | - |
| .reloc | 0xf8000 | 0xa84 | 0xc00 | 5.145258 | - |