File: d1955c9ba75f429d68da2e1b68d1239a

Metadata
File name:N/A
File type:PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive
File size:79288
Analysis date:N/A
MD5:d1955c9ba75f429d68da2e1b68d1239a
SHA1:cd1f38ddc2d479bf48199d53fe3210ebb70a3fef
SHA256:b85ff92dd757198158bb75e70de9aab534c89145705d9e7ef01f534c05a809ee
SHA512:N/A
SSDEEP:N/A
IMPHASH:N/A
Authentihash:N/A
Related resources
PE TypePE32
File Size77 kB
Machine TypeIntel 386 or later, and compatibles
File OSWin32
Code Size23552
OS Version4.0
Entry Point0x30b8
File Flags Mask0x0000
Linker Version6.0
File SubtypeN/A
Uninitialized Data Size1024
File Version1.0.1.1
Initialized Data Size117760
File DescriptioniWin Games Downloader
Product Version Number1.0.1.1
Product NameiWin Games
Company NameiWin inc.
MIME Typeapplication/octet-stream
Character SetASCII
Language CodeEnglish (U.S.)
File Version Number1.0.1.1
File TypeWin32 EXE
Legal Copyright© iWin inc.
SubsystemWindows GUI
Object File TypeExecutable application
Image Version6.0
File Flags(none)
Subsystem Version4.0
Product Version1.0.1.1
Source:
APTNotes
Cyber threat intelligence reports associated with d1955c9ba75f429d68da2e1b68d1239a.
Loading...
Domains
Domains the malware sample communicates with.
Hosts
Hosts the malware sample communicates with.
HTTP Requests
HTTP requests the malware sample makes.
AV Detections
AV detection names associated with the malware sample.
AviraADWARE/Adware.Gen
ClamAVWin.Trojan.Agent-945896
K7AntiVirusRiskware ( 0040eff71 )
K7GWRiskware ( 0040eff71 )
Kasperskynot-a-virus:Downloader.Win32.Agent.edeg
MalwarebytesPUP.Optional.iWin
PandaGeneric Suspicious
Qihoo-360HEUR/QVM42.1.Malware.Gen
SophosGeneric PUA MN (PUA)
TotalDefenseWin32/iWin_i
VBA32suspected of Trojan.Downloader.gen.h
Mutants
Mutants created by the malware sample.
Registry keys
Registry keys created by the malware sample.
Comments
User comments about d1955c9ba75f429d68da2e1b68d1239a.
NOTICE: We have updated our privacy terms and conditions in accordance to GDPR. By using our site, you acknowledge that you have read and understand our Privacy Policy. Your use of ThreatMiner’s Products and Services is subject to these policies and terms.