VirusShare.com - Because Sharing is Caring

Home • Hashes • Research • About • Swag Shop

Account: Login

Please login to search and download.

System currently contains 113,827,264 malware samples.

Report for a sample recently added to the system:
ae09c82840e4aa5fc0b0219485f3b902ff89b5ec3091a2f94606b7e35487fe13
VirusShare info last updated 2026-06-10 00:00:01 UTC
Detected by 56 engines  
MD5b2dadfacc0fe9b1f3a0e3074cd5ebb14
SHA142ebfb61403b4d0e2fc1224d0e030c1c0b673c59
SHA256ae09c82840e4aa5fc0b0219485f3b902ff89b5ec3091a2f94606b7e35487fe13
SSDeep12288:mN2N7N9FS18IHXlakldxx04Y6CVZ2ms78SZVACKDG4Ps4Em8V0w6akNDaIVAdPQd:mN2NcJlDxPFXZ5yl+06W7BQZxpuztRt
Authentihash047711ed56e850c6cda8235573253abbe9412fdad0019f822441c3c5e2c26604
Size1,394,176 bytes
File TypePE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
Mime Typeapplication/x-dosexec
Extensionexe
TrIDGeneric CIL Executable (.NET, Mono, etc.) (59.4%)
Windows screen saver (10.6%)
Win64 Executable (generic) (8.5%)
Win32 Dynamic Link Library (generic) (5.3%)
Win16 NE executable (generic) (4.0%)
Detections
(56/70)
ALYacGen:Variant.Application.msilheracles.997
APEXMalicious
AVGWin32:MalwareX-gen [Drp]
Acronissuspicious
AhnLab-V3Trojan/Win.Generic.C5168281
Antiy-AVLTrojan[Spy]/MSIL.Stealer
ArcabitTrojan.Application.msilheracles.997
AvastWin32:MalwareX-gen [Drp]
AviraDR/W32.MalwareX
BitDefenderGen:Variant.Application.msilheracles.997
BkavW32.Malware.109E8D47
CAT-QuickHealTrojan.MsilFC.S33348414
CTXexe.unknown.msilheracles
ClamAVWin.Packed.Msilmamut-9987799-0
CrowdStrikewin/malicious_confidence_100% (D)
CylanceUnsafe
DeepInstinctMALICIOUS
DrWebBackDoor.DarkCrystalNET.18
ESET-NOD32MSIL/Spy.Agent.DTR trojan
Elasticmalicious (high confidence)
EmsisoftGen:Variant.Application.msilheracles.997 (B)
F-SecureDropper.DR/W32.MalwareX
FortinetMSIL/Agent.DTR!tr.spy
GDataGen:Variant.Application.msilheracles.997
GoogleDetected
GridinsoftTrojan.Win32.Agent.oa!s1
IkarusTrojan.MSIL.Spy
JiangminTrojanSpy.MSIL.ckhn
K7AntiVirusTrojan ( 00592ff21 )
K7GWTrojan ( 00592ff21 )
KasperskyHEUR:Trojan-Spy.MSIL.Stealer.gen
Kingsoftmalware.kb.c.986
MalwarebytesGeneric.Spyware.Stealer.DDS
MaxSecureTrojan.Malware.300983.susgen
McAfeeDReal Protect-LS!B2DADFACC0FE
MicroWorld-eScanGen:Variant.Application.msilheracles.997
MicrosoftBackdoor:MSIL/DCRat!pz
NANO-AntivirusTrojan.Win32.Spy.leapgq
PandaTrj/GdSda.A
RisingBackdoor.DCRat!1.E0D3 (CLASSIC)
SUPERAntiSpywareTrojan.Agent/Gen-Stealer
SangforTrojan.Win32.Save.a
SentinelOneStatic AI - Malicious PE
SkyhighDCRAT-FDQN!B2DADFACC0FE
SophosTroj/DCRat-J
TACHYONTrojan-Spy/W32.DN-InfoStealer.1394176
TencentBackdoor.Msil.Dcrat.16002288
TrellixENSDCRAT-FDQN!B2DADFACC0FE
TrendMicro-HouseCallTrojan.Win32.VSX.PE04CA1
VBA32Dropper.MSIL.gen
VIPREGen:Variant.Application.msilheracles.997
VaristW32/MSIL_Agent.DZU.gen!Eldorado
VirITTrojan.Win32.GenusT.DQCZ
ZillyaTrojan.BasicGen.Win32.1
ZoneAlarmTroj/DCRat-J
huorongBackdoor/MSIL.DCRat.n
VirusTotal Report submitted 2026-05-17 18:57:28 UTC
ExIF Data
CharacterSetUnicode
CodeSize1392128
Comments6ZNUGTgYrPcdkWRwwXGnwzTdQ7L
CompanyNameCEkLuz1XLmFfzmtbmCFJEu5
EntryPoint0x155c1e
FileFlags(none)
FileFlagsMask0x003f
FileOSWin32
FileSize1362 kB
FileSubtype0
FileTypeWin32 EXE
FileTypeExtensionexe
FileVersion273.762.552.610
FileVersionNumber273.762.552.610
ImageFileCharacteristicsExecutable, Large address aware, 32-bit
ImageVersion0
InitializedDataSize1536
InternalNameETPcbyEQ5vUa0ZnxDc.exe
LanguageCodeEnglish (U.S.)
LegalCopyrightuGmofEqNfmijuJHGMrGpjcnl6y
LinkerVersion8
MIMETypeapplication/octet-stream
MachineTypeIntel 386 or later, and compatibles
OSVersion4
ObjectFileTypeDynamic link library
OriginalFileNamecRGsHKr.exe
PETypePE32
ProductNameLdiWgiaVt5IEVLrRepODj4k
ProductVersion718.340.19.568
ProductVersionNumber718.340.19.568
SubsystemWindows GUI
SubsystemVersion4
TimeStamp2022:05:04 16:03:35+00:00
UninitializedDataSize0