× Cookies sind ausgeschaltet! Diese Seite erfordert aktivierte Cookies, um vollständig zu funktionieren.
SHA256: 084e788f9311713305e3232c997458937d19279948e395e7ac17a47bb2c8d500
Dateiname: Q-Dir 6.57.0
Erkennungsrate: 1 / 62
Analyse-Datum: 2017-06-22 13:01:42 UTC ( vor 5 Monate, 3 Wochen )
Antivirus Ergebnis Aktualisierung
CMC Trojan.Win32.Swizzor.1!O 20170619
Ad-Aware 20170622
AegisLab 20170622
AhnLab-V3 20170622
Alibaba 20170622
ALYac 20170622
Antiy-AVL 20170622
Arcabit 20170622
Avast 20170622
AVG 20170622
Avira (no cloud) 20170622
AVware 20170622
Baidu 20170622
BitDefender 20170622
Bkav 20170622
CAT-QuickHeal 20170622
ClamAV 20170622
Comodo 20170622
CrowdStrike Falcon (ML) 20170420
Cyren 20170622
DrWeb 20170622
Emsisoft 20170622
Endgame 20170615
ESET-NOD32 20170622
F-Prot 20170622
F-Secure 20170622
Fortinet 20170622
GData 20170622
Ikarus 20170622
Sophos ML 20170607
Jiangmin 20170622
K7AntiVirus 20170622
K7GW 20170622
Kaspersky 20170622
Kingsoft 20170622
Malwarebytes 20170622
McAfee 20170622
McAfee-GW-Edition 20170622
Microsoft 20170622
eScan 20170622
NANO-Antivirus 20170622
nProtect 20170622
Palo Alto Networks (Known Signatures) 20170622
Panda 20170622
Qihoo-360 20170622
Rising 20170622
SentinelOne (Static ML) 20170516
Sophos AV 20170622
SUPERAntiSpyware 20170622
Symantec 20170622
Symantec Mobile Insight 20170621
Tencent 20170622
TheHacker 20170621
TotalDefense 20170622
TrendMicro 20170622
TrendMicro-HouseCall 20170622
Trustlook 20170622
VBA32 20170622
VIPRE 20170622
ViRobot 20170622
Webroot 20170622
WhiteArmor 20170616
Yandex 20170621
Zillya 20170619
ZoneAlarm by Check Point 20170622
Zoner 20170622
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2006-2017

Product Q-Dir SoftwareOK.com
Original name Q-Dir.exe
Internal name Q-Dir 6.57.0
File version 6, 5, 7, 0
Description Q-Dir
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2017-05-26 18:18:24
Entry Point 0x0008700A
Number of sections 5
PE sections
PE imports
RegDeleteKeyA
GetUserNameA
LookupPrivilegeValueA
RegOpenKeyA
RegCloseKey
OpenProcessToken
RegSetValueExA
RegQueryValueExA
AdjustTokenPrivileges
RegDeleteValueA
RegCreateKeyExA
RegOpenKeyExA
RegEnumKeyExA
ImageList_GetImageCount
PropertySheetA
InitCommonControlsEx
ImageList_Destroy
_TrackMouseEvent
ImageList_AddMasked
ImageList_SetBkColor
ImageList_ReplaceIcon
ImageList_Draw
ImageList_GetImageInfo
ImageList_Create
DestroyPropertySheetPage
ImageList_Remove
Ord(6)
ImageList_GetIcon
CreatePropertySheetPageA
Ord(8)
ImageList_LoadImageA
GetWindowExtEx
SetMapMode
PatBlt
SetStretchBltMode
CreatePen
SaveDC
CreateFontIndirectA
LPtoDP
GetClipBox
DeleteEnhMetaFile
GetPixel
Rectangle
GetObjectA
GetDeviceCaps
CreateDCA
LineTo
DeleteDC
RestoreDC
SetBkMode
EndDoc
CreateSolidBrush
StartPage
DeleteObject
IntersectClipRect
BitBlt
CreateDIBSection
SetTextColor
OffsetWindowOrgEx
CreatePatternBrush
StartDocA
ExcludeClipRect
CreateBitmap
MoveToEx
GetStockObject
SetViewportOrgEx
GetViewportExtEx
ExtTextOutA
OffsetViewportOrgEx
CreateEnhMetaFileA
SelectClipRgn
CreateCompatibleDC
StretchBlt
CloseEnhMetaFile
SetBrushOrgEx
EndPage
GetBkColor
GetTextExtentPoint32A
AbortDoc
ResetDCA
SetWindowExtEx
GetEnhMetaFileHeader
SetWindowOrgEx
DPtoLP
SelectObject
SetBkColor
SetViewportExtEx
CreateCompatibleBitmap
GetFileAttributesA
GetDriveTypeA
HeapDestroy
DebugBreak
GetLocalTime
DeleteCriticalSection
GetCurrentProcess
GetLocaleInfoA
lstrcatA
GetLogicalDrives
GetFullPathNameA
GetTempPathA
WideCharToMultiByte
InterlockedExchange
WriteFile
GetDiskFreeSpaceA
SetFileAttributesA
MoveFileA
GetLogicalDriveStringsA
InitializeCriticalSection
LoadResource
GlobalHandle
FindClose
InterlockedDecrement
EnumDateFormatsA
OutputDebugStringA
SetLastError
GetEnvironmentVariableA
GetUserDefaultLangID
CopyFileA
ExitProcess
GetModuleFileNameA
GetPrivateProfileStringA
MultiByteToWideChar
WritePrivateProfileSectionA
FlushInstructionCache
CreateMutexA
GetModuleHandleA
CreateThread
MulDiv
GetSystemDirectoryA
TerminateProcess
GetNumberFormatA
GlobalAlloc
GetCurrentThreadId
InterlockedIncrement
EnterCriticalSection
TerminateThread
lstrcmpiA
FreeLibrary
GetVersionExA
LoadLibraryA
GlobalSize
GetStartupInfoA
GetDateFormatA
GetFileSize
GetPrivateProfileIntA
CreateDirectoryA
DeleteFileA
GetWindowsDirectoryA
GetUserDefaultLCID
lstrcmpA
FindFirstFileA
lstrcpyA
GetProfileStringA
CompareStringA
GetTempFileNameA
FindNextFileA
GetProcAddress
RemoveDirectoryA
SetVolumeLabelA
GetPrivateProfileSectionA
CreateFileA
LeaveCriticalSection
GetLastError
lstrlenA
GlobalFree
GlobalUnlock
lstrlenW
GetShortPathNameA
SizeofResource
WritePrivateProfileStringA
GetCurrentProcessId
LockResource
SetFileTime
EnumTimeFormatsA
lstrcpynW
SetFilePointer
ReadFile
CloseHandle
lstrcpynA
GlobalLock
FreeResource
Sleep
FindResourceA
GetTimeFormatA
AlphaBlend
_purecall
rand
malloc
__p__fmode
_ftol
fread
fclose
__dllonexit
_controlfp
fopen
_except_handler3
_ismbcspace
_mbsrchr
clock
??2@YAPAXI@Z
fwrite
_mbscmp
_onexit
wcslen
exit
sprintf
realloc
strrchr
__setusermatherr
__p__commode
_XcptFilter
_acmdln
_mbsicmp
_ismbcdigit
_fullpath
_adjust_fdiv
time
??3@YAXPAX@Z
free
ceil
_mbschr
atoi
_mbsstr
__getmainargs
calloc
_initterm
memmove
_chdir
_exit
__set_app_type
LoadRegTypeLib
OleCreateFontIndirect
SysStringLen
SysAllocStringLen
VariantClear
SysAllocString
SysFreeString
VariantInit
SHBrowseForFolderA
DragQueryFileA
Ord(18)
SHFileOperationA
SHGetFileInfoA
Ord(68)
ShellExecuteExA
Ord(88)
Ord(17)
SHGetDesktopFolder
SHGetPathFromIDListA
Shell_NotifyIconA
SHGetMalloc
Ord(155)
DragAcceptFiles
SHGetSpecialFolderPathA
Ord(4)
Ord(2)
Ord(25)
DragFinish
ExtractIconExA
SHGetSettings
Ord(21)
SHGetSpecialFolderLocation
Ord(16)
SHAppBarMessage
Ord(189)
ShellExecuteA
PathRelativePathToA
RedrawWindow
SetDlgItemTextA
GetMessagePos
MoveWindow
DrawAnimatedRects
DestroyMenu
PostQuitMessage
LoadBitmapA
SetWindowPos
IsWindow
DispatchMessageA
ClientToScreen
ScrollWindowEx
SetMenuItemInfoA
WindowFromPoint
SetActiveWindow
GetMenuItemID
GetAsyncKeyState
DrawTextA
GetDlgCtrlID
GetMenu
SendMessageA
GetClientRect
SetMenuDefaultItem
SetScrollPos
CallNextHookEx
LoadAcceleratorsA
GetWindowTextLengthA
GetMenuDefaultItem
GetActiveWindow
GetSubMenu
LoadImageA
GetMenuItemInfoA
GetMenuItemCount
GetWindowTextA
InvalidateRgn
RegisterClassExA
PtInRect
DrawEdge
GetParent
UpdateWindow
SetPropA
EnumWindows
GetClassInfoExA
ShowWindow
SetClassLongA
DrawFrameControl
GetDesktopWindow
EnableWindow
SetWindowPlacement
PeekMessageA
TranslateMessage
IsWindowEnabled
GetWindow
CharUpperA
CreateCursor
InsertMenuItemA
LoadStringA
SetParent
SetClipboardData
CharLowerA
IsZoomed
GetWindowPlacement
LoadStringW
EnableMenuItem
TrackPopupMenuEx
DrawFocusRect
SetTimer
FillRect
CopyRect
GetSysColorBrush
EndPaint
GetCursorPos
DestroyWindow
IsChild
IsDialogMessageA
MapWindowPoints
MapVirtualKeyA
ReleaseCapture
GetMessageA
SetCapture
BeginPaint
OffsetRect
SetFocus
GetScrollPos
keybd_event
KillTimer
RegisterWindowMessageA
DefWindowProcA
GetClipboardData
GetSystemMetrics
GetWindowRect
InflateRect
PostMessageA
DrawIcon
SetWindowLongA
GetScrollInfo
RemovePropA
CreatePopupMenu
CheckMenuItem
GetWindowLongA
DrawIconEx
CreateWindowExA
GetDlgItem
CreateDialogParamA
ScreenToClient
InsertMenuA
CreateDialogIndirectParamA
FindWindowExA
LoadCursorA
LoadIconA
TrackPopupMenu
SetWindowsHookExA
GetMenuStringA
GetMenuState
GetSystemMenu
GetDC
SetForegroundWindow
DialogBoxIndirectParamA
OpenClipboard
EmptyClipboard
ReleaseDC
IntersectRect
EndDialog
LoadMenuA
CharNextA
GetCapture
FindWindowA
SetWindowTextA
MessageBeep
RemoveMenu
GetWindowThreadProcessId
AppendMenuA
GetPropA
UnhookWindowsHookEx
RegisterClipboardFormatA
SetRectEmpty
CallWindowProcA
MessageBoxA
GetClassNameA
GetWindowDC
DestroyCursor
wvsprintfA
mouse_event
DialogBoxParamA
GetSysColor
SetScrollInfo
GetKeyState
SystemParametersInfoA
MenuItemFromPoint
GetDoubleClickTime
DestroyIcon
IsWindowVisible
FrameRect
SetRect
DeleteMenu
InvalidateRect
wsprintfA
SendMessageTimeoutA
CreateAcceleratorTableA
TranslateAcceleratorA
IsRectEmpty
IsMenu
GetFocus
CloseClipboard
ModifyMenuA
SetMenu
SetCursor
PlaySoundA
timeGetTime
OpenPrinterA
GetPrinterA
ClosePrinter
GetOpenFileNameA
ChooseColorA
PrintDlgA
PageSetupDlgA
GetSaveFileNameA
CreateStreamOnHGlobal
OleUninitialize
CoCreateInstance
CoInitialize
OleInitialize
RevokeDragDrop
ReleaseStgMedium
RegisterDragDrop
CLSIDFromProgID
OleLockRunning
DoDragDrop
StringFromCLSID
OleSetClipboard
CoUninitialize
OleGetClipboard
CoTaskMemFree
CLSIDFromString
CoTaskMemAlloc
Number of PE resources by type
RT_DIALOG 38
IMG 27
RT_BITMAP 27
RT_ICON 25
Struct(241) 25
RT_GROUP_ICON 25
RT_MENU 5
RT_ACCELERATOR 3
Struct(240) 2
RT_STRING 2
WAVE 1
RT_MANIFEST 1
TEXTINCLUDE 1
RT_VERSION 1
PNG 1
Number of PE resources by language
GERMAN 182
GERMAN LIECHTENSTEIN 2
PE resources
ExifTool file metadata
UninitializedDataSize
0

LinkerVersion
6.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
6.5.7.0

LanguageCode
German

FileFlagsMask
0x003f

FileDescription
Q-Dir

Company
Nenad Hrg (SoftwareOK.de)

CharacterSet
Unicode

InitializedDataSize
892928

EntryPoint
0x8700a

OriginalFileName
Q-Dir.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright 2006-2017

FileVersion
6, 5, 7, 0

TimeStamp
2017:05:26 19:18:24+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
Q-Dir 6.57.0

ProductVersion
6, 5, 7, 0

SubsystemVersion
4.0

OSVersion
4.0

FileOS
Windows NT 32-bit

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Nenad Hrg (SoftwareOK.com)

CodeSize
0

ProductName
Q-Dir SoftwareOK.com

ProductVersionNumber
6.5.7.0

FileTypeExtension
exe

ObjectFileType
Dynamic link library

Compressed bundles
File identification
MD5 206c7a990b297d1fd309beb2bc3e3250
SHA1 39b1ef44f5a590163c46fd1942d626e3798d1483
SHA256 084e788f9311713305e3232c997458937d19279948e395e7ac17a47bb2c8d500
ssdeep
12288:mW6Cp0wLWpTkn804QnAtao9qS5QQu5uIHXLfxy5uUWJkUjk3pjg0J+JJnZDHX:mILAeAkoJ5lu5xHXjpmOiNJkJn1

authentihash 00c3e09625a56ab4ce4cd4f29d3abaa2599dc2208cc00baa3bc7cac69ea54809
imphash af98dbee5276590a1e2b95b24653a3fc
File size 840.0 KB ( 860160 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID InstallShield setup (38.9%)
Win32 Executable MS Visual C++ (generic) (28.2%)
Win64 Executable (generic) (25.0%)
Win32 Executable (generic) (4.0%)
Generic Win/DOS Executable (1.8%)
Tags
peexe

VirusTotal metadata
First submission 2017-05-26 18:38:29 UTC ( vor 6 Monate, 2 Wochen )
Last submission 2017-05-26 18:38:29 UTC ( vor 6 Monate, 2 Wochen )
Dateinamen Q-Dir_4.33.exe
Q-Dir_Win98.exe
Q-Dir_Installer_Win98.exe
084E788F9311713305E3232C997458937D19279948E395E7AC17A47BB2C8D500
Q-Dir.exe
Q-Dir_Win98.exe
Q-Dir 6.57.0
Keine Kommentare. Bisher hat kein Mitglied der VirusTotal-Community einen Kommentar zu diesem Punkt verfasst, seien Sie der Erste!

Hinterlassen Sie Ihren Kommentar...

?
Kommentar abschicken

Sie sind nicht angemeldet. Nur registrierte Nutzer können Kommentare hinterlassen, melden Sie sich an und sagen Sie etwas dazu!

Keine Bewertungen. Niemand hat diesen Punkt bisher bewertet, seien Sie der Erste!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Created mutexes
Opened mutexes
Searched windows
Runtime DLLs
UDP communications