× Cookies sind ausgeschaltet! Diese Seite erfordert aktivierte Cookies, um vollständig zu funktionieren.
SHA256: 06e3d98589b3e3b33aba946672c037500eff58630fc35263c8e9a719ae741fac
Dateiname: xtrabytes-qt.exe
Erkennungsrate: 3 / 67
Analyse-Datum: 2017-12-16 14:09:42 UTC ( vor 1 Monat ) Zeige Neueste
Antivirus Ergebnis Aktualisierung
Kaspersky not-a-virus:RiskTool.Win32.BitCoinMiner.inav 20171216
Qihoo-360 Win32/Sorter.AVE.CryptLocker.HY 20171216
ZoneAlarm by Check Point not-a-virus:RiskTool.Win32.BitCoinMiner.inav 20171216
Ad-Aware 20171216
AegisLab 20171216
AhnLab-V3 20171216
Alibaba 20171215
ALYac 20171216
Antiy-AVL 20171216
Arcabit 20171215
Avast 20171216
Avast-Mobile 20171215
AVG 20171216
Avira (no cloud) 20171216
AVware 20171216
Baidu 20171216
BitDefender 20171216
Bkav 20171216
CAT-QuickHeal 20171216
ClamAV 20171216
CMC 20171216
Comodo 20171216
CrowdStrike Falcon (ML) 20171016
Cybereason 20171103
Cylance 20171216
Cyren 20171216
DrWeb 20171216
eGambit 20171216
Emsisoft 20171216
Endgame 20171130
ESET-NOD32 20171216
F-Prot 20171216
F-Secure 20171216
Fortinet 20171216
GData 20171216
Ikarus 20171216
Sophos ML 20170914
Jiangmin 20171216
K7AntiVirus 20171216
K7GW 20171214
Kingsoft 20171216
Malwarebytes 20171216
MAX 20171216
McAfee 20171216
McAfee-GW-Edition 20171216
Microsoft 20171216
eScan 20171216
NANO-Antivirus 20171216
nProtect 20171216
Palo Alto Networks (Known Signatures) 20171216
Panda 20171216
Rising 20171216
SentinelOne (Static ML) 20171207
Sophos AV 20171216
SUPERAntiSpyware 20171216
Symantec 20171215
Symantec Mobile Insight 20171215
Tencent 20171216
TheHacker 20171210
TrendMicro 20171216
TrendMicro-HouseCall 20171216
Trustlook 20171216
VBA32 20171215
VIPRE 20171216
ViRobot 20171216
Webroot 20171216
WhiteArmor 20171204
Yandex 20171216
Zillya 20171214
Zoner 20171216
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
2009-2014 The Bitcoin Developers, 2012-2014 The PPCoin developers, 2014 The xtrabytes developers

Product xtrabytes-Qt
Original name xtrabytes-qt.exe
Internal name xtrabytes-qt
File version 1.2.0.3
Description xtrabytes-Qt (OSS GUI client for xtrabytes)
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2017-12-08 16:56:54
Entry Point 0x000014C0
Number of sections 9
PE sections
PE imports
RegCreateKeyExW
RegCloseKey
RegDeleteKeyW
CopySid
RegQueryValueExA
OpenEventLogA
RegNotifyChangeKeyValue
RegQueryValueExW
SetSecurityDescriptorDacl
RegFlushKey
OpenProcessToken
DeregisterEventSource
RegOpenKeyExW
RegisterEventSourceA
RegOpenKeyExA
GetTokenInformation
CloseEventLog
RegQueryInfoKeyW
RegDeleteValueW
RegEnumKeyExW
GetLengthSid
ReadEventLogA
RegSetValueExW
FreeSid
RegEnumValueW
InitializeSecurityDescriptor
ReportEventA
CertFreeCertificateContext
CertFreeCertificateChain
CertCreateCertificateContext
CertGetCertificateChain
SetGraphicsMode
GetCharABCWidthsW
GetCharABCWidthsFloatW
RemoveFontMemResourceEx
CreateFontIndirectW
GetGlyphOutlineW
SetTextAlign
CombineRgn
GetTextMetricsW
GetBitmapBits
GetDeviceCaps
DeleteDC
SetBkMode
GetPixelFormat
SetWorldTransform
ChoosePixelFormat
GetObjectW
CreateDCW
CreateDIBSection
SetTextColor
GetRegionData
GetObjectA
OffsetRgn
ExtTextOutW
GetTextFaceW
DescribePixelFormat
CreateBitmap
BitBlt
EnumFontFamiliesExW
AddFontMemResourceEx
GetStockObject
GetOutlineTextMetricsW
GetDIBits
SetPixelFormat
GdiFlush
SelectClipRgn
CreateCompatibleDC
RemoveFontResourceExW
SwapBuffers
CreateRectRgn
GetTextExtentPoint32W
AddFontResourceExW
SelectObject
GetFontData
DeleteObject
CreateCompatibleBitmap
ImmGetVirtualKey
ImmSetCompositionWindow
ImmGetDefaultIMEWnd
ImmNotifyIME
ImmGetContext
ImmSetCandidateWindow
ImmReleaseContext
ImmGetCompositionStringW
ImmAssociateContext
GetAdaptersAddresses
GetNetworkParams
GetAdaptersInfo
GetIpAddrTable
GetBestRoute
GetStdHandle
GetDriveTypeW
ReleaseMutex
FileTimeToSystemTime
CreateFileMappingA
GetFileAttributesA
SetEvent
FindFirstFileW
GetVolumePathNameA
GetHandleInformation
GetFileAttributesW
lstrcmpW
GetLocalTime
GetVolumePathNamesForVolumeNameW
DeleteCriticalSection
GetCurrentProcess
MoveFileW
MapViewOfFileEx
UnhandledExceptionFilter
SetFilePointer
OpenFileMappingA
SetErrorMode
GetLogicalDrives
GetFileInformationByHandle
GetThreadContext
GetLocaleInfoW
GetFileTime
IsDBCSLeadByteEx
GetTempPathA
CheckRemoteDebuggerPresent
WideCharToMultiByte
GetTempPathW
GetTimeZoneInformation
GetUserPreferredUILanguages
WaitForSingleObject
GetSystemTimeAsFileTime
GetDiskFreeSpaceA
GetThreadPriority
GetExitCodeProcess
LocalFree
FormatMessageW
AddVectoredExceptionHandler
SetWaitableTimer
GetEnvironmentVariableA
OutputDebugStringW
FindClose
TlsGetValue
FormatMessageA
GetFullPathNameW
QueueUserWorkItem
OutputDebugStringA
VirtualQuery
GetEnvironmentVariableW
SetLastError
GetSystemTime
DeviceIoControl
InitializeCriticalSection
CopyFileW
GetUserDefaultLangID
GetModuleFileNameW
TryEnterCriticalSection
IsDebuggerPresent
ExitProcess
GetVersionExA
GetModuleFileNameA
FlushViewOfFile
QueueUserAPC
RaiseException
GetVolumeInformationA
SetThreadPriority
CreateDirectoryExW
GetVolumeInformationW
MultiByteToWideChar
SystemTimeToTzSpecificLocalTime
SetFilePointerEx
SetProcessAffinityMask
MoveFileExW
FindNextChangeNotification
CreateMutexA
GetVolumeNameForVolumeMountPointA
SetFileAttributesW
LockFileEx
CreateSemaphoreA
CreateThread
VirtualLock
GetGeoInfoW
GetSystemDirectoryW
CreateSemaphoreW
CreateMutexW
ExitThread
MoveFileExA
SetThreadContext
MoveFileA
GlobalMemoryStatus
FindCloseChangeNotification
SetUnhandledExceptionFilter
GetVersion
GetModuleHandleExW
SetCurrentDirectoryW
GlobalAlloc
GetDiskFreeSpaceExW
RemoveVectoredExceptionHandler
GetCurrentThreadId
SleepEx
CloseHandle
AreFileApisANSI
InitializeCriticalSectionAndSpinCount
HeapFree
EnterCriticalSection
TerminateThread
LoadLibraryW
FreeLibrary
QueryPerformanceCounter
GetTickCount
TlsAlloc
VirtualProtect
FlushFileBuffers
LoadLibraryA
WaitForSingleObjectEx
GlobalSize
GetStartupInfoA
UnlockFile
GetWindowsDirectoryW
SetHandleInformation
LCMapStringW
OpenProcess
CreateDirectoryA
DeleteFileA
GetDateFormatW
GetStartupInfoW
ReadProcessMemory
CreateDirectoryW
DeleteFileW
GetProcAddress
GetProcessHeap
CreateWaitableTimerW
CompareStringW
GetFileSizeEx
RemoveDirectoryW
ExpandEnvironmentStringsW
FindNextFileW
WaitForMultipleObjectsEx
ResetEvent
CreateWaitableTimerA
FindNextFileA
TerminateProcess
DuplicateHandle
FindFirstFileExW
GetUserDefaultLCID
GetFileInformationByHandleEx
GetProcessAffinityMask
CreateEventW
CreateFileW
GetConsoleWindow
CreateEventA
GetFileType
TlsSetValue
CreateFileA
HeapAlloc
GetCurrencyFormatW
LeaveCriticalSection
GetNativeSystemInfo
GetLastError
SystemTimeToFileTime
CreateFileMappingW
VirtualAllocEx
GetSystemInfo
GlobalFree
ResumeThread
GetTimeFormatW
GetProcessTimes
GlobalUnlock
GetUserGeoID
RemoveDirectoryA
FindFirstChangeNotificationW
GetQueuedCompletionStatus
LockFile
SwitchToThread
GetCurrentDirectoryW
VirtualFreeEx
GetCurrentProcessId
CreateIoCompletionPort
SetFileTime
GetCommandLineW
VerSetConditionMask
GetCurrentThread
GetTickCount64
SuspendThread
QueryPerformanceFrequency
ReleaseSemaphore
MapViewOfFile
TlsFree
GetModuleHandleA
VirtualUnlock
ReadFile
SetEndOfFile
PulseEvent
FindFirstFileA
VerifyVersionInfoW
GlobalLock
GetModuleHandleW
GetFileAttributesExW
GetLongPathNameW
UnmapViewOfFile
WriteFile
PostQueuedCompletionStatus
CreateProcessW
WaitForMultipleObjects
Sleep
OpenEventA
GetAcceptExSockaddrs
AcceptEx
VariantInit
SysAllocStringLen
SHBrowseForFolderW
SHCreateItemFromParsingName
SHCreateItemFromIDList
ShellExecuteW
SHGetPathFromIDListW
SHGetSpecialFolderPathA
SHGetKnownFolderIDList
SHGetFileInfoW
SHGetKnownFolderPath
Shell_NotifyIconW
SHGetMalloc
CommandLineToArgvW
SHGetStockIconInfo
PathFileExistsW
PathRemoveFileSpecW
SetFocus
GetForegroundWindow
SetWindowRgn
TrackMouseEvent
SetWindowPos
IsWindow
EndPaint
SetMenuItemInfoW
GetDC
DestroyCursor
GetCursorPos
ChildWindowFromPointEx
GetMenu
TranslateMessage
UnregisterClassW
GetClassInfoW
ToAscii
SetCaretPos
CallNextHookEx
GetSysColor
LoadImageW
GetWindowTextW
DestroyWindow
GetUserObjectInformationW
GetParent
GetCursorInfo
EnumWindows
UpdateLayeredWindowIndirect
CreateCaret
ShowWindow
FlashWindowEx
EnumDisplayMonitors
PeekMessageW
SetWindowPlacement
GetClipboardFormatNameW
GetSystemMenu
SetParent
DestroyCaret
CreateCursor
CharNextExA
GetIconInfo
GetQueueStatus
RegisterClassW
IsZoomed
GetWindowPlacement
SetWindowLongW
GetKeyboardLayoutList
IsHungAppWindow
IsIconic
TrackPopupMenuEx
SetTimer
GetKeyboardLayout
GetSysColorBrush
CreateWindowExW
GetWindowLongW
GetUpdateRect
IsChild
MapWindowPoints
RegisterWindowMessageW
GetMonitorInfoW
BeginPaint
DefWindowProcW
KillTimer
MapVirtualKeyW
SetClipboardViewer
GetSystemMetrics
EnableMenuItem
GetWindowRect
SetCapture
ReleaseCapture
GetMessageExtraInfo
GetProcessWindowStation
ToUnicode
DrawIconEx
SetWindowTextW
FindWindowW
ClientToScreen
PostMessageW
GetKeyboardState
AttachThreadInput
GetDesktopWindow
SetWindowsHookExW
LoadCursorW
LoadIconW
FindWindowExW
DispatchMessageW
SetForegroundWindow
NotifyWinEvent
GetAsyncKeyState
GetCaretBlinkTime
ReleaseDC
SetLayeredWindowAttributes
HideCaret
CreateIconIndirect
GetCapture
ScreenToClient
MessageBeep
GetWindowThreadProcessId
MessageBoxW
SendMessageW
RegisterClassExW
UnhookWindowsHookEx
MoveWindow
MessageBoxA
ChangeClipboardChain
AdjustWindowRectEx
MsgWaitForMultipleObjectsEx
RegisterClipboardFormatW
GetKeyState
UpdateLayeredWindow
GetDoubleClickTime
DestroyIcon
RealGetWindowClassW
IsWindowVisible
SetCursorPos
SystemParametersInfoW
InvalidateRect
GetClientRect
GetCursor
GetFocus
GetAncestor
SetCursor
GetThemeBackgroundRegion
GetThemePartSize
GetThemePropertyOrigin
IsAppThemed
GetThemeColor
GetCurrentThemeName
GetThemeBool
IsThemeActive
OpenThemeData
DrawThemeBackgroundEx
CloseThemeData
IsThemeBackgroundPartiallyTransparent
GetThemeMargins
GetThemeTransitionDuration
SetWindowTheme
GetThemeEnumValue
GetThemeInt
timeKillEvent
timeSetEvent
PlaySoundW
getaddrinfo
htonl
WSAConnect
WSARecvFrom
WSARecv
accept
ioctlsocket
WSAStartup
freeaddrinfo
WSASocketW
getsockname
WSAAddressToStringA
htons
getnameinfo
WSAGetLastError
gethostname
getsockopt
WSAAccept
recv
send
ntohl
inet_addr
WSASend
ntohs
WSAHtonl
select
gethostbyaddr
listen
WSANtohl
__WSAFDIsSet
shutdown
WSACleanup
gethostbyname
WSASetLastError
WSAAsyncSelect
closesocket
WSAIoctl
WSANtohs
setsockopt
socket
getpeername
bind
WSASendTo
sendto
connect
DwmEnableBlurBehindWindow
DwmIsCompositionEnabled
__lconv_init
wcsftime
fseek
fclose
_snwprintf
strtoul
fflush
fsetpos
_fmode
strtol
__initenv
system
fwrite
frexp
fputs
_fstat64
_strlwr
isspace
_close
iswctype
_timezone
wcscoll
_exit
wcsncmp
__dllonexit
_wfopen
strstr
_write
strcoll
memcpy
perror
ctime
memmove
signal
remove
freopen
strcmp
memchr
strncmp
_ultoa
wcscmp
fgetc
memset
strcat
_stricmp
_setmode
fgets
__pioinfo
strchr
asin
fopen
_beginthread
fgetpos
_getpid
ftell
exit
sprintf
strrchr
_acmdln
fputc
ferror
gmtime
free
ungetc
_getdrive
__getmainargs
ungetwc
_stat
_lseeki64
_vsnprintf
puts
_read
wcsxfrm
strcpy
bsearch
__mb_cur_max
islower
_getch
isupper
_ftime
_iob
rand
_putenv
setlocale
realloc
_getcwd
strxfrm
__doserrno
_open_osfhandle
calloc
isprint
_setjmp3
toupper
printf
_commit
strncpy
_cexit
raise
isalnum
mktime
qsort
_tzset
_open
_onexit
wcslen
isalpha
_snprintf
putc
memcmp
__setusermatherr
log10
srand
_fdopen
_wchmod
getenv
atoi
vfprintf
atol
atof
_tzname
localeconv
strerror
wcscpy
_beginthreadex
strspn
_strnicmp
putwc
localtime
isxdigit
malloc
sscanf
acos
fread
_waccess
abort
fprintf
getwc
tan
ispunct
feof
_endthreadex
_amsg_exit
_errno
strlen
_lock
_get_osfhandle
_strdup
towlower
_fileno
wcsrchr
longjmp
tolower
atan
_unlock
fwprintf
setbuf
_initterm
towupper
__argv
iswprint
_filelengthi64
__argc
strftime
time
wcsstr
_wgetdcwd
getc
setvbuf
__set_app_type
OleUninitialize
CoUninitialize
CoInitialize
OleFlushClipboard
CoLockObjectExternal
ReleaseStgMedium
CoCreateGuid
RegisterDragDrop
CoCreateInstance
DoDragDrop
RevokeDragDrop
OleSetClipboard
CoGetMalloc
OleGetClipboard
OleIsCurrentClipboard
CoTaskMemFree
StringFromGUID2
OleInitialize
Number of PE resources by type
RT_ICON 6
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 8
PE resources
ExifTool file metadata
SubsystemVersion
4.0

InitializedDataSize
27764736

ImageVersion
1.0

ProductName
xtrabytes-Qt

FileVersionNumber
1.2.0.3

UninitializedDataSize
71680

LanguageCode
English (U.S.)

FileFlagsMask
0x0000

CharacterSet
Windows, Latin1

LinkerVersion
2.25

FileTypeExtension
exe

OriginalFileName
xtrabytes-qt.exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
1.2.0.3

LegalTrademarks1
Distributed under the MIT/X11 software license, see the accompanying file COPYING or http://www.opensource.org/licenses/mit-license.php.

TimeStamp
2017:12:08 17:56:54+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
xtrabytes-qt

ProductVersion
1.2.0.3

FileDescription
xtrabytes-Qt (OSS GUI client for xtrabytes)

OSVersion
4.0

FileOS
Windows NT 32-bit

LegalCopyright
2009-2014 The Bitcoin Developers, 2012-2014 The PPCoin developers, 2014 The xtrabytes developers

MachineType
Intel 386 or later, and compatibles

CompanyName
xtrabytes

CodeSize
18628608

FileSubtype
0

ProductVersionNumber
1.2.0.3

EntryPoint
0x14c0

ObjectFileType
Executable application

File identification
MD5 605b0e383b9d02d0ef9be0081e98e1f6
SHA1 c5bd42419cea52e6cb5d3b73791e302ecc9f6574
SHA256 06e3d98589b3e3b33aba946672c037500eff58630fc35263c8e9a719ae741fac
ssdeep
393216:C2KrOb+/muZ0Buf2v/g/fx/bMSrh5ttvKEMGZF8l7EwycLjyn9Jsv6tWKFdu9CJ:C7rObcmu6QdZ/Vrf1MM8l7jTLjm

authentihash 369d2c80a3dfb7e33afa28d4a770a2d147c3fe981aa2c4c4dfe9333befcf88b8
imphash 4a06d0be0fca85ef3a60dec3eafa239c
File size 26.5 MB ( 27765760 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID InstallShield setup (46.2%)
Win32 EXE PECompact compressed (generic) (44.6%)
Win32 Executable (generic) (4.8%)
Generic Win/DOS Executable (2.1%)
DOS Executable Generic (2.1%)
Tags
peexe

VirusTotal metadata
First submission 2017-12-09 09:58:58 UTC ( vor 1 Monat, 1 Woche )
Last submission 2017-12-23 21:34:57 UTC ( vor 4 Wochen )
Dateinamen xtrabytes-qt.exe
xtrabytes-qt
xtrabytes-qt.exe
Keine Kommentare. Bisher hat kein Mitglied der VirusTotal-Community einen Kommentar zu diesem Punkt verfasst, seien Sie der Erste!

Hinterlassen Sie Ihren Kommentar...

?
Kommentar abschicken

Sie sind nicht angemeldet. Nur registrierte Nutzer können Kommentare hinterlassen, melden Sie sich an und sagen Sie etwas dazu!

Keine Bewertungen. Niemand hat diesen Punkt bisher bewertet, seien Sie der Erste!