× الكوكيز معطل! هذا الموقع يتطلب تمكين الكوكيز للعمل بشكل صحيح
SHA256: 835f13291a7af30dead492f9604fa9416c55d77e51881f75c86c1f155c7048d6
إسم الملف: REPARA FICHEROS 3.1 Portable.exe
نسبة الفحص: 5 / 57
تاريخ الفحص 2016-12-09 10:29:29 UTC ( 2 سنتان، 5 أشهر مضت ) مشاهدة الأخير
مكافح الفيروسات النتيجة التحديث
CMC Virus.Win32.Sality!O 20161209
CrowdStrike Falcon (ML) malicious_confidence_94% (W) 20161024
Sophos ML virus.win32.virut.bn 20161202
Yandex Packed/MPress 20161208
Zillya Trojan.Agent.Win32.606164 20161207
Ad-Aware 20161209
AegisLab 20161209
AhnLab-V3 20161209
Alibaba 20161209
ALYac 20161209
Antiy-AVL 20161209
Arcabit 20161209
Avast 20161209
AVG 20161209
Avira (no cloud) 20161209
AVware 20161209
Baidu 20161207
BitDefender 20161209
Bkav 20161209
CAT-QuickHeal 20161209
ClamAV 20161209
Comodo 20161209
Cyren 20161209
DrWeb 20161209
Emsisoft 20161209
ESET-NOD32 20161209
F-Prot 20161209
F-Secure 20161209
Fortinet 20161209
GData 20161209
Ikarus 20161209
Jiangmin 20161208
K7AntiVirus 20161209
K7GW 20161209
Kaspersky 20161209
Kingsoft 20161209
Malwarebytes 20161209
McAfee 20161209
McAfee-GW-Edition 20161208
Microsoft 20161209
eScan 20161209
NANO-Antivirus 20161209
nProtect 20161209
Panda 20161208
Qihoo-360 20161209
Rising 20161209
Sophos AV 20161209
SUPERAntiSpyware 20161209
Symantec 20161209
Tencent 20161209
TheHacker 20161130
TotalDefense 20161209
TrendMicro 20161209
TrendMicro-HouseCall 20161209
Trustlook 20161209
VBA32 20161208
VIPRE 20161209
ViRobot 20161209
WhiteArmor 20161207
Zoner 20161209
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows command line subsystem.
FileVersionInfo properties
Copyright
JJ_Software - 2011

Product Repara Ficheros JJ
Internal name Repara Ficheros JJ
File version 3,1,0,0
Description Repara tus dispositivos de virus
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2011-03-25 13:17:51
Entry Point 0x000571E7
Number of sections 3
PE sections
PE imports
InitCommonControls
BitBlt
GetProcAddress
GetModuleHandleA
CoInitialize
ShellExecuteExA
PathQuoteSpacesA
IsChild
Number of PE resources by type
RT_RCDATA 3
RT_ICON 2
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 8
PE resources
ExifTool file metadata
UninitializedDataSize
0

InitializedDataSize
306176

ImageVersion
0.0

ProductName
Repara Ficheros JJ

FileVersionNumber
3.1.0.0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

FileDescription
Repara tus dispositivos de virus

CharacterSet
Windows, Latin1

LinkerVersion
2.5

FileTypeExtension
exe

MIMEType
application/octet-stream

Subsystem
Windows command line

FileVersion
3,1,0,0

TimeStamp
2011:03:25 14:17:51+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
Repara Ficheros JJ

ProductVersion
3,1,0,0

SubsystemVersion
4.0

OSVersion
4.0

FileOS
Windows 16-bit

LegalCopyright
JJ_Software - 2011

MachineType
Intel 386 or later, and compatibles

CompanyName
JJ_Software

CodeSize
33792

FileSubtype
0

ProductVersionNumber
3.1.0.0

EntryPoint
0x571e7

ObjectFileType
Executable application

File identification
MD5 8860d7261fca258ad0769bc1d80b5067
SHA1 521fcfee97b93d094c9328aa6c222a8b49a2ff2f
SHA256 835f13291a7af30dead492f9604fa9416c55d77e51881f75c86c1f155c7048d6
ssdeep
1536:e3lRJg04dhEnRpteJId7V7Hx7Pt+tIgtyaJ+tIgtya2O:wlvg5hEbEIdFR7su

authentihash a945784df18ef1d19797477b12d292cec3432513b5a7388e017f1025d26befd8
imphash 691f1193f16065947032ace3a2329e55
File size 153.0 ك.ب ( 156672 bytes )
File type Win32 EXE
Magic literal
MS-DOS executable, MZ for MS-DOS

TrID Win32 Executable (generic) (52.9%)
Generic Win/DOS Executable (23.5%)
DOS Executable Generic (23.5%)
Tags
peexe usb-autorun

VirusTotal metadata
First submission 2014-04-29 01:01:18 UTC ( 5 سنوات مضت )
Last submission 2016-11-13 21:31:24 UTC ( 2 سنتان، 6 أشهر مضت )
أسماء الملفات REPARA FICHEROS 3.1 Portable.exe
REPARA FICHEROS_Jj V-3.1_Portable.exe
REPARA FICHEROS_Jj V-3.1_Portable.exe
filename
REPARA FICHEROS_Jj V-3.1_Portable.exe
REPARA+FICHEROS_Jj++V-3.1_Portable.exe
REPARA FICHEROS_Jj V-3.1_Portable.exe
Repara Ficheros JJ
USB ANTIVIRUS.exe
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

TrendMicro-HouseCall
TrendMicro's heuristic engine has flagged this file as: Suspicious_GEN.F47V0909.

Symantec reputation Suspicious.Insight
لا توجد تعليقات. لا يوجد أحد من أعضاء مجتمع فايروس توتال قام بالتعليق على هذا الملف حتى الآن، كٌن اول شخص يفعل ذلك!

أترك تعليقك...

?
إضافة تعليق

لم تقم بتسجيل الدخول.فقط الأعضاء المسجلون لدينا يملكون صلاحية الرد, قم بتسجيل الدخول وشارك بصوتك !

لا توجد تصويتات. لا احد صوت على هذا الملف من قبل، كٌن اول شخص يفعل ذلك!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Written files
Deleted files
Created processes
Opened mutexes
Runtime DLLs
Additional details
The file sends control codes directly to certain device drivers making use of the DeviceIoControl Windows API function.